Cistron has a mirror of non-us and security on ftp.debian.nl
Gr,
Ivo
-Original Message-
From: Jan H. van Gils [EMAIL PROTECTED]
Date: Wed, 20 Nov 2002 11:41:19 +0100
Subject: Mirror Site Security
Hi,
Well lets hope that the fire doesn't make and casualties.
But the question
Cistron has a mirror of non-us and security on ftp.debian.nl
Gr,
Ivo
-Original Message-
From: Jan H. van Gils [EMAIL PROTECTED]
Date: Wed, 20 Nov 2002 11:41:19 +0100
Subject: Mirror Site Security
Hi,
Well lets hope that the fire doesn't make and casualties.
But the question
Towards the end of the Debian installation process, when you're asked
whether you want to run tasksel or dselect, you can choose dselect
and
exit it before installing any packages. If you do that, you're left
with a really minimal install. You might be able to base your work
on
this.
Woody
host:/home/przemoltelnet 192.168.x.y ssh
Trying 192.168.x.y...
Connected to 192.168.x.y.
Escape character is '^]'.
SSH-2.0-OpenSSH_3.4p1 Debian 1:3.4p1-1
How can I disable the message ?
This banner is needed information for a ssh client connecting to your
server, therefor you
SSH-2.0-OpenSSH_3.4p1 Debian 1:3.4p1-1
Edit sshd_config
find the line with something like
Banner /etc/issue.net
and set
# Banner /etc/issue.net
killall -9 sshd
done
Regards
afaik /etc/issue.net is intended for telnet and not for ssh.
furthermore:
$ netcat 0 22
Woody
host:/home/przemoltelnet 192.168.x.y ssh
Trying 192.168.x.y...
Connected to 192.168.x.y.
Escape character is '^]'.
SSH-2.0-OpenSSH_3.4p1 Debian 1:3.4p1-1
How can I disable the message ?
This banner is needed information for a ssh client connecting to your
server, therefor you
SSH-2.0-OpenSSH_3.4p1 Debian 1:3.4p1-1
Edit sshd_config
find the line with something like
Banner /etc/issue.net
and set
# Banner /etc/issue.net
killall -9 sshd
done
Regards
afaik /etc/issue.net is intended for telnet and not for ssh.
furthermore:
$ netcat 0 22
I got two open Ports on my Debian-Server and I do not know what
they are
standing for:
Open Port: 56851
Open Port: 57216
try lsof -i | grep 56851
it could help u see what application is listening on that port
also netstat -anp as root will tell you what process is
I got two open Ports on my Debian-Server and I do not know what
they are
standing for:
Open Port: 56851
Open Port: 57216
try lsof -i | grep 56851
it could help u see what application is listening on that port
also netstat -anp as root will tell you what process is
I think as a German I'm allowed to say this:
No English, no security. There will always be bits and pieces
available
in English only. Making DSAs available in foreign languages will help
amateurs without sufficient English skills to keep their systems up
to date.
It might even help
Both are on SurfNet in The netherlands, I suppose they went down for a
short while or the connection between your ISP and Surf went down.
Greetings,
Ivo van Dongen
-Original Message-
From: Ng Fong Chu [EMAIL PROTECTED]
Date: Wed, 26 Jun 2002 13:51:06 +0800
Subject: non-us.debian.org is
-Original Message-
From: Wichert Akkerman [EMAIL PROTECTED]
Date: Fri, 21 Jun 2002 16:05:10 +0200
Subject: Re: sources.list for potato
Previously Pavel Minev Penev wrote:
And there is no
deb http://non-us.debian.org/debian-security unstable/updates
main
contrib non-free
Do netstat -anp as root instead, it gives process pid and name
-Original Message-
From: Ryan J Goss [EMAIL PROTECTED]
Date: Mon, 10 Jun 2002 12:04:03 -0500 (CDT)
Subject: netstat output
When I do a netstat -an, how do I properly decipher the output? To
me it
looks like a lot of ports
Hello ppl,
What are some important things to watch on your debian box ? I'm
checking
logfiles periodically, and run chkrootkit once in a while.
Are there any parameters in debian that can be turned on for some
more
detailed logging ?
Also, if you're using some handy 3rd party tools,
Hello
Just a little question :
is there a security updates sources for the woody release ?
There will be once it becomes the stable release.
Greetz,
Ivo van Dongen
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Hello
Just a little question :
is there a security updates sources for the woody release ?
There will be once it becomes the stable release.
Greetz,
Ivo van Dongen
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
-Original Message-
From: Pollywog [EMAIL PROTECTED]
Date: Sun, 12 May 2002 16:31:55 +
Subject: SSH Version mapper scan
I just saw this in my logs. Should I be concerned and why is it
happening? TIA
Unusual System Events
=-=-=-=-=-=-=-=-=-=-=
May 12 15:59:04 lilypad
-Original Message-
From: Pollywog [EMAIL PROTECTED]
Date: Sun, 12 May 2002 16:31:55 +
Subject: SSH Version mapper scan
I just saw this in my logs. Should I be concerned and why is it
happening? TIA
Unusual System Events
=-=-=-=-=-=-=-=-=-=-=
May 12 15:59:04 lilypad
Does the connection tracking hold the connections even if the
firewall
was flushed?
If it is so, is it a bug or a feature?
did you by chance forget to flush all tables and just flushed by doing
iptables -F ???
Gr,
Ivo
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of
Does the connection tracking hold the connections even if the
firewall
was flushed?
If it is so, is it a bug or a feature?
did you by chance forget to flush all tables and just flushed by doing
iptables -F ???
Gr,
Ivo
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of
There is a Explorer-like interface to PuTTY's
scp command. Maybe an option. Don't have
much experience with this, I personally use some
mini-shell-scripts attached to the sendto-menue
for uploading.
http://www.i-tree.org/ixplorer.htm
I tried that program before, but it has issues. It
I've been playing around with the scp and sftp components of putty
and
noticed what I consider a security hole. Winscp does the same thing.
The user can change to directories above their home. Is there a way
to
chroot them like you can in an ftp config file?
scp is merely a way to use a
I've been playing around with the scp and sftp components of putty
and
noticed what I consider a security hole. Winscp does the same thing.
The user can change to directories above their home. Is there a way
to
chroot them like you can in an ftp config file?
scp is merely a way to use a
That's the proper 'debian' way to do it. But if you've already been
rooted you'll probably want to start from a fresh install. Download
the install floppy images from
http://ftp.us.debian.org/debian/dists/woody/main/disks-i386/current/i
mages-1.44/
jikes, how oldfashion.
If I'm not out
VPN, like for instance tinc
Greetz,
Ivo
[EMAIL PROTECTED]:~$ apt-cache show clue
Package: clue
Priority: optional
-Original Message-
From:
-Original Message-
From: Ramon Acedo [EMAIL PROTECTED]
Date: Sun, 10 Feb 2002 23:39:20 +0100
Subject: Emulate real ip's to access intranet hosts from outside
---snip-
I just want that when someone try to access to host1.mydomain.net
from the
internet my firewall (and dns server)
-Original Message-
From: Ramon Acedo [EMAIL PROTECTED]
Date: Sun, 10 Feb 2002 23:39:20 +0100
Subject: Emulate real ip's to access intranet hosts from outside
---snip-
I just want that when someone try to access to host1.mydomain.net
from the
internet my firewall (and dns server)
I don't think the choice of MTA is relevant to the HDD organisation.
I use both Postfix and Qmail and they both work fine.
The only thing you have to realize is when you use Qmail with maildir,
you really need a large /home partition.
Greetz,
Ivo
When writing a new mail which I intend to encrypt via gpg, mutt
creates a tmp file (normaly unter /tmp/.mutt*) which it uses to
'comunicate' with Vim.
Or emacs, or whatever editor you prefer, yes.
This file lasts as long the vim-session is
running. Vim then saves the changes to the
When writing a new mail which I intend to encrypt via gpg, mutt
creates a tmp file (normaly unter /tmp/.mutt*) which it uses to
'comunicate' with Vim.
Or emacs, or whatever editor you prefer, yes.
This file lasts as long the vim-session is
running. Vim then saves the changes to the
Yes, we can send a bill
-Original Message-
From: Ed Street [EMAIL PROTECTED]
Date: Fri, 9 Nov 2001 08:09:54 -0500
Subject: SPAM was RE: INSURE GOOD RECEPTION! VITAL EMERGENCY STRATEGY!!!
Hey,
Is there *anything* we can do about all this Spam that's getting on
this
list?
Ed
Yes, we can send a bill
-Original Message-
From: Ed Street [EMAIL PROTECTED]
Date: Fri, 9 Nov 2001 08:09:54 -0500
Subject: SPAM was RE: INSURE GOOD RECEPTION! VITAL EMERGENCY STRATEGY!!!
Hey,
Is there *anything* we can do about all this Spam that's getting on
this
list?
Ed
In this case I use (and suggest to use) pscp which is a win32
implementation of scp (secure copy). It uses a ssh connection to upload
or download. Unfortunatly it uses no gui and has to run from cmd or
command.
pscp can be found on the putty page...
Greetz,
Ivo
In this case I use (and suggest to use) pscp which is a win32
implementation of scp (secure copy). It uses a ssh connection to upload
or download. Unfortunatly it uses no gui and has to run from cmd or
command.
pscp can be found on the putty page...
Greetz,
Ivo
# netstat -anp|less
that works for me all the time
Without the darkness, how would you recognize the light?
-Original Message-
From: Ben
# netstat -anp|less
that works for me all the time
Without the darkness, how would you recognize the light?
-Original Message-
From: Ben
I do have snort installed and it gives me nicely daily status logs
containing absolutly nothing :(
There might be more programs mailing root(or alias for root) with
nothingCRON maybe...
Gr,
Ivo
Without the darkness,
I do have snort installed and it gives me nicely daily status logs
containing absolutly nothing :(
There might be more programs mailing root(or alias for root) with
nothingCRON maybe...
Gr,
Ivo
Without the darkness,
Because of loads of resonses to me willing to send the script I've put
it on the web for now, it's at:
http://www.insecure.nl/~vdong/
Greetz,
Ivo
Without the darkness, how would you recognize the light?
Because of loads of resonses to me willing to send the script I've put
it on the web for now, it's at:
http://www.insecure.nl/~vdong/
Greetz,
Ivo
Without the darkness, how would you recognize the light?
I think I found the problem with this user:
dudes@portal:~$ bofh
/dev/clue was linked to /dev/null
Which package is that?
I don't have that command on my sytem :-(
Or is it just a script that pulls it out of bofh fortunes?
accually, it's a perl script with a database build
I think I found the problem with this user:
[EMAIL PROTECTED]:~$ bofh
/dev/clue was linked to /dev/null
Which package is that?
I don't have that command on my sytem :-(
Or is it just a script that pulls it out of bofh fortunes?
accually, it's a perl script with a database build
Without the darkness, how would you recognize the light?
-Original Message-
From: [EMAIL PROTECTED]
Date: 1 Sep 2001 13:18:18 -
Subject:
poor salesperson.
that guy/girl is only trying to earn a living...
I usually reroute them to $secretary
Without the darkness, how would you recognize the light?
-Original Message-
From: [EMAIL PROTECTED] (Thomas Bushnell, BSG)
Date: 01 Sep 2001 11:38:41 -0700
Subject: Re: HARASS ME MORE.
Noah L. Meyerhans [EMAIL PROTECTED] writes:
Please don't do that. That's an incredibly rude practice. The
people
never asked for your opinion
I think I found the problem with this user:
[EMAIL PROTECTED]:~$ bofh
/dev/clue was linked to /dev/null
-Original Message-
From: Daniel T. Chen [EMAIL PROTECTED]
Date: Sat, 1 Sep 2001 00:58:33 -0400 (EDT)
Subject: Re: IS THERE ANY INTELLIGENT LIFE AT YOUR END AT
Without the darkness, how would you recognize the light?
-Original Message-
From: [EMAIL PROTECTED]
Date: 1 Sep 2001 13:18:18 -
Subject:
47 matches
Mail list logo