Cistron has a mirror of non-us and security on ftp.debian.nl
Gr,
Ivo
-Original Message-
From: "Jan H. van Gils" <[EMAIL PROTECTED]>
Date: Wed, 20 Nov 2002 11:41:19 +0100
Subject: Mirror Site Security
> Hi,
>
> Well lets hope that the fire doesn't make and casualties.
>
> But the
Cistron has a mirror of non-us and security on ftp.debian.nl
Gr,
Ivo
-Original Message-
From: "Jan H. van Gils" <[EMAIL PROTECTED]>
Date: Wed, 20 Nov 2002 11:41:19 +0100
Subject: Mirror Site Security
> Hi,
>
> Well lets hope that the fire doesn't make and casualties.
>
> But the
> Towards the end of the Debian installation process, when you're asked
> whether you want to run tasksel or dselect, you can choose dselect
> and
> exit it before installing any packages. If you do that, you're left
> with a really minimal install. You might be able to base your work
> on
> this
> Towards the end of the Debian installation process, when you're asked
> whether you want to run tasksel or dselect, you can choose dselect
> and
> exit it before installing any packages. If you do that, you're left
> with a really minimal install. You might be able to base your work
> on
> this
> > SSH-2.0-OpenSSH_3.4p1 Debian 1:3.4p1-1
>
> Edit sshd_config
>
> find the line with something like
>
> Banner /etc/issue.net
>
> and set
>
> # Banner /etc/issue.net
>
> killall -9 sshd
>
> done
>
>
> Regards
afaik /etc/issue.net is intended for telnet and not for ssh.
furthermore:
$ n
> Woody
>
> host:/home/przemol>telnet 192.168.x.y ssh
> Trying 192.168.x.y...
> Connected to 192.168.x.y.
> Escape character is '^]'.
> SSH-2.0-OpenSSH_3.4p1 Debian 1:3.4p1-1
>
> How can I disable the message ?
This banner is needed information for a ssh client connecting to your
server, therefo
> > SSH-2.0-OpenSSH_3.4p1 Debian 1:3.4p1-1
>
> Edit sshd_config
>
> find the line with something like
>
> Banner /etc/issue.net
>
> and set
>
> # Banner /etc/issue.net
>
> killall -9 sshd
>
> done
>
>
> Regards
afaik /etc/issue.net is intended for telnet and not for ssh.
furthermore:
$ n
> Woody
>
> host:/home/przemol>telnet 192.168.x.y ssh
> Trying 192.168.x.y...
> Connected to 192.168.x.y.
> Escape character is '^]'.
> SSH-2.0-OpenSSH_3.4p1 Debian 1:3.4p1-1
>
> How can I disable the message ?
This banner is needed information for a ssh client connecting to your
server, therefo
> > I got two open Ports on my Debian-Server and I do not know what
> they are
> > standing for:
> >
> > Open Port: 56851
> > Open Port: 57216
> try lsof -i | grep 56851
> it could help u see what application is listening on that port
also "netstat -anp" as root will tell you what process
> > I got two open Ports on my Debian-Server and I do not know what
> they are
> > standing for:
> >
> > Open Port: 56851
> > Open Port: 57216
> try lsof -i | grep 56851
> it could help u see what application is listening on that port
also "netstat -anp" as root will tell you what process
> I think as a German I'm allowed to say this:
>
> No English, no security. There will always be bits and pieces
> available
> in English only. Making DSAs available in foreign languages will help
> amateurs without sufficient English skills to keep their systems up
> to date.
It might even help p
Both are on SurfNet in The netherlands, I suppose they went down for a
short while or the connection between your ISP and Surf went down.
Greetings,
Ivo van Dongen
-Original Message-
From: "Ng Fong Chu" <[EMAIL PROTECTED]>
Date: Wed, 26 Jun 2002 13:51:06 +0800
Subject: non-us.debian.org
-Original Message-
From: Wichert Akkerman <[EMAIL PROTECTED]>
Date: Fri, 21 Jun 2002 16:05:10 +0200
Subject: Re: sources.list for potato
> Previously Pavel Minev Penev wrote:
> > And there is no
> >
> > deb http://non-us.debian.org/debian-security unstable/updates
main
> contrib non-
Do netstat -anp as root instead, it gives process pid and name
-Original Message-
From: Ryan J Goss <[EMAIL PROTECTED]>
Date: Mon, 10 Jun 2002 12:04:03 -0500 (CDT)
Subject: netstat output
> When I do a netstat -an, how do I properly decipher the output? To
> me it
> looks like a lot of po
> Hello ppl,
>
> What are some important things to watch on your debian box ? I'm
> checking
> logfiles periodically, and run chkrootkit once in a while.
> Are there any parameters in debian that can be turned on for some
> more
> detailed logging ?
> Also, if you're using some handy 3rd party too
> Hello
> Just a little question :
> is there a security updates sources for the woody release ?
There will be once it becomes the stable release.
Greetz,
Ivo van Dongen
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
> Hello
> Just a little question :
> is there a security updates sources for the woody release ?
There will be once it becomes the stable release.
Greetz,
Ivo van Dongen
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
-Original Message-
From: Pollywog <[EMAIL PROTECTED]>
Date: Sun, 12 May 2002 16:31:55 +
Subject: SSH Version mapper scan
> I just saw this in my logs. Should I be concerned and why is it
> happening? TIA
>
> Unusual System Events
> =-=-=-=-=-=-=-=-=-=-=
> May 12 15:59:04 lilypad s
-Original Message-
From: Pollywog <[EMAIL PROTECTED]>
Date: Sun, 12 May 2002 16:31:55 +
Subject: SSH Version mapper scan
> I just saw this in my logs. Should I be concerned and why is it
> happening? TIA
>
> Unusual System Events
> =-=-=-=-=-=-=-=-=-=-=
> May 12 15:59:04 lilypad
> Does the connection tracking hold the connections even if the
> firewall
> was flushed?
>
> If it is so, is it a bug or a feature?
did you by chance forget to flush all tables and just flushed by doing
iptables -F ???
Gr,
Ivo
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of
> Does the connection tracking hold the connections even if the
> firewall
> was flushed?
>
> If it is so, is it a bug or a feature?
did you by chance forget to flush all tables and just flushed by doing
iptables -F ???
Gr,
Ivo
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject o
> There is a Explorer-like interface to PuTTY's
> scp command. Maybe an option. Don't have
> much experience with this, I personally use some
> mini-shell-scripts attached to the sendto-menue
> for uploading.
>
> http://www.i-tree.org/ixplorer.htm
>
I tried that program before, but it has issues
> I've been playing around with the scp and sftp components of putty
> and
> noticed what I consider a security hole. Winscp does the same thing.
> The user can change to directories above their home. Is there a way
> to
> chroot them like you can in an ftp config file?
scp is merely a way to use
> I've been playing around with the scp and sftp components of putty
> and
> noticed what I consider a security hole. Winscp does the same thing.
> The user can change to directories above their home. Is there a way
> to
> chroot them like you can in an ftp config file?
scp is merely a way to us
> That's the proper 'debian' way to do it. But if you've already been
> rooted you'll probably want to start from a fresh install. Download
> the install floppy images from
> http://ftp.us.debian.org/debian/dists/woody/main/disks-i386/current/i
> mages-1.44/
>
jikes, how oldfashion.
If I'm not
> That's the proper 'debian' way to do it. But if you've already been
> rooted you'll probably want to start from a fresh install. Download
> the install floppy images from
> http://ftp.us.debian.org/debian/dists/woody/main/disks-i386/current/i
> mages-1.44/
>
jikes, how oldfashion.
If I'm no
VPN, like for instance tinc
Greetz,
Ivo
[EMAIL PROTECTED]:~$ apt-cache show clue
Package: clue
Priority: optional
-Original Message-
From: "J
VPN, like for instance tinc
Greetz,
Ivo
dudes@doc:~$ apt-cache show clue
Package: clue
Priority: optional
-Original Message-
From: "Jaroslaw
-Original Message-
From: "Ramon Acedo" <[EMAIL PROTECTED]>
Date: Sun, 10 Feb 2002 23:39:20 +0100
Subject: Emulate real ip's to access intranet hosts from outside
---snip-
> I just want that when someone try to access to host1.mydomain.net
> from the
> internet my firewall (and dns server)
>
-Original Message-
From: "Ramon Acedo" <[EMAIL PROTECTED]>
Date: Sun, 10 Feb 2002 23:39:20 +0100
Subject: Emulate real ip's to access intranet hosts from outside
---snip-
> I just want that when someone try to access to host1.mydomain.net
> from the
> internet my firewall (and dns server)
I don't think the choice of MTA is relevant to the HDD organisation.
I use both Postfix and Qmail and they both work fine.
The only thing you have to realize is when you use Qmail with maildir,
you really need a large /home partition.
Greetz,
Ivo
I don't think the choice of MTA is relevant to the HDD organisation.
I use both Postfix and Qmail and they both work fine.
The only thing you have to realize is when you use Qmail with maildir,
you really need a large /home partition.
Greetz,
Ivo
---
> > When writing a new mail which I intend to encrypt via gpg, mutt
> > creates a tmp file (normaly unter /tmp/.mutt*) which it uses to
> > 'comunicate' with Vim.
>
> Or emacs, or whatever editor you prefer, yes.
>
> > This file lasts as long the vim-session is
> > running. Vim then saves the cha
> > When writing a new mail which I intend to encrypt via gpg, mutt
> > creates a tmp file (normaly unter /tmp/.mutt*) which it uses to
> > 'comunicate' with Vim.
>
> Or emacs, or whatever editor you prefer, yes.
>
> > This file lasts as long the vim-session is
> > running. Vim then saves the ch
Yes, we can send a bill
-Original Message-
From: "Ed Street" <[EMAIL PROTECTED]>
Date: Fri, 9 Nov 2001 08:09:54 -0500
Subject: SPAM was RE: INSURE GOOD RECEPTION! VITAL EMERGENCY STRATEGY!!!
> Hey,
>
> Is there *anything* we can do about all this Spam that's getting on
> this
> list?
>
>
Yes, we can send a bill
-Original Message-
From: "Ed Street" <[EMAIL PROTECTED]>
Date: Fri, 9 Nov 2001 08:09:54 -0500
Subject: SPAM was RE: INSURE GOOD RECEPTION! VITAL EMERGENCY STRATEGY!!!
> Hey,
>
> Is there *anything* we can do about all this Spam that's getting on
> this
> list?
>
In this case I use (and suggest to use) pscp which is a win32
implementation of scp (secure copy). It uses a ssh connection to upload
or download. Unfortunatly it uses no gui and has to run from cmd or
command.
pscp can be found on the putty page...
Greetz,
Ivo
---
In this case I use (and suggest to use) pscp which is a win32
implementation of scp (secure copy). It uses a ssh connection to upload
or download. Unfortunatly it uses no gui and has to run from cmd or
command.
pscp can be found on the putty page...
Greetz,
Ivo
--
# netstat -anp|less
that works for me all the time
Without the darkness, how would you recognize the light?
-Original Message-
From: Ben S
# netstat -anp|less
that works for me all the time
Without the darkness, how would you recognize the light?
-Original Message-
From: Ben
I do have snort installed and it gives me nicely daily status logs
containing absolutly nothing :(
There might be more programs mailing root(or alias for root) with
nothingCRON maybe...
Gr,
Ivo
Without the darkness, ho
I do have snort installed and it gives me nicely daily status logs
containing absolutly nothing :(
There might be more programs mailing root(or alias for root) with
nothingCRON maybe...
Gr,
Ivo
Without the darkness, h
Because of loads of resonses to me willing to send the script I've put
it on the web for now, it's at:
http://www.insecure.nl/~vdong/
Greetz,
Ivo
Without the darkness, how would you recognize the light?
Because of loads of resonses to me willing to send the script I've put
it on the web for now, it's at:
http://www.insecure.nl/~vdong/
Greetz,
Ivo
Without the darkness, how would you recognize the light?
---
> > I think I found the problem with this user:
> >
> >
> > [EMAIL PROTECTED]:~$ bofh
> > /dev/clue was linked to /dev/null
> >
> Which package is that?
> I don't have that command on my sytem :-(
>
> Or is it just a script that pulls it out of bofh fortunes?
accually, it's a perl script with a
> > I think I found the problem with this user:
> >
> >
> > dudes@portal:~$ bofh
> > /dev/clue was linked to /dev/null
> >
> Which package is that?
> I don't have that command on my sytem :-(
>
> Or is it just a script that pulls it out of bofh fortunes?
accually, it's a perl script with a dat
-Original Message-
From: [EMAIL PROTECTED] (Thomas Bushnell, BSG)
Date: 01 Sep 2001 11:38:41 -0700
Subject: Re: HARASS ME MORE.
> "Noah L. Meyerhans" <[EMAIL PROTECTED]> writes:
>
> > Please don't do that. That's an incredibly rude practice. The
> people
> > never asked for you
poor salesperson.
that guy/girl is only trying to earn a living...
I usually reroute them to $secretary
Without the darkness, how would you recognize the light?
---
Without the darkness, how would you recognize the light?
-Original Message-
From: [EMAIL PROTECTED]
Date: 1 Sep 2001 13:18:18 -
Subject: R
I think I found the problem with this user:
[EMAIL PROTECTED]:~$ bofh
/dev/clue was linked to /dev/null
-Original Message-
From: "Daniel T. Chen" <[EMAIL PROTECTED]>
Date: Sat, 1 Sep 2001 00:58:33 -0400 (EDT)
Subject: Re: IS THERE ANY INTELLIGENT LIFE AT YOUR END AT
ALL?
Without the darkness, how would you recognize the light?
-Original Message-
From: [EMAIL PROTECTED]
Date: 1 Sep 2001 13:18:18 -
Subject:
I think I found the problem with this user:
dudes@portal:~$ bofh
/dev/clue was linked to /dev/null
-Original Message-
From: "Daniel T. Chen" <[EMAIL PROTECTED]>
Date: Sat, 1 Sep 2001 00:58:33 -0400 (EDT)
Subject: Re: IS THERE ANY INTELLIGENT LIFE AT YOUR END AT
ALL?
Sure.If you don't mind driving to holland to fetch me..
Without the darkness, how would you recognize the light?
-Original Message-
Fr
53 matches
Mail list logo