Re: firewall rules for bitlord, yahoo, limewire
On Thu, 27 Nov 2008 12:07:50 +0100 (CET)
Wojciech Puchar [EMAIL PROTECTED] wrote:
Yeah. Limewire is written in Java (iirc), which makes it extremely
easy to port it to any system that can run java.
for P2P sharing rtorrent (/usr/ports/net-p2p/rtorrent) works excellent
if you only want BT ... didn't know rtorrent supported gnutella...
_
{Beto|Norberto|Numard} Meijome
I abhor a system designed for the 'user', if that word is a coded pejorative
meaning 'stupid and unsophisticated'.
Ken Thompson
I speak for myself, not my employer. Contents may be hot. Slippery when wet.
Reading disclaimers makes you go blind. Writing them is worse. You have been
Warned.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
On Wed, 26 Nov 2008 23:25:21 -0600
Andrew Gould [EMAIL PROTECTED] wrote:
The Limewire website says it has versions for Windows, Mac OS X, Linux and
others, including OS/2 and Solaris.
furthermore, you can just download the source and make it run from within
Eclipse (with some tweaks regarding to the GUI toolkit...)
B
_
{Beto|Norberto|Numard} Meijome
Ugly programs are like ugly suspension bridges: they're much more liable to
collapse than pretty ones, because the way humans (especially engineer-humans)
perceive beauty is intimately related to our ability to process and understand
complexity. A language that makes it hard to write elegant code makes it hard
to write good code.
Eric Raymond
I speak for myself, not my employer. Contents may be hot. Slippery when wet.
Reading disclaimers makes you go blind. Writing them is worse. You have been
Warned.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
because historically ISPs used those ports for throttling. +1 . skype does the same thing. and it's p2p too , although a lot less so than limewire. well ther are excellent method to block skype when using HTTP proxy not NAT ;) (skype can do through proxy) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
Yeah. Limewire is written in Java (iirc), which makes it extremely easy to port it to any system that can run java. for P2P sharing rtorrent (/usr/ports/net-p2p/rtorrent) works excellent ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
Fbsd1 [EMAIL PROTECTED] escribió: These applications have predefined ports they use to start up the bi-directional packet conversation. But them unsolicited packeted come in from other pc nodes to share data using a wide range of high port numbers. IPFW, IPF, and PF don't seem to have a rule option to allow packs in/out based on program name that started the conversation. I thought i read in openbsd pf manual that pf state processing will allow applications like limewire to function normally by accepting the inbound high number port to pass through the firewall. I have inclusive firewall rule set which means only packets matching the rules are passed through. The inbound hight port numbers are blocked by design. How do other firewall users code rules to allow limewire to work? Hmmm. Isn't life interesting. I would like to know how to block them and others without causing strange secondary problems. Actually a default pf configuration will let them pass unless I'm forgetting something important. ed ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
On Wed, 26 Nov 2008 21:40:27 +0800 Fbsd1 [EMAIL PROTECTED] wrote: I have inclusive firewall rule set which means only packets matching the rules are passed through. The inbound hight port numbers are blocked by design. How do other firewall users code rules to allow limewire to work? I don't use limewire, but for other p2p I define pf macros that list the udp and tcp ports and and explicity allow incoming connections. If you want to know what ports an application is listening on try sockstat -l. I wouldn't expose them without tracking down what they do though in case they are http, telnet, etc. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
On Wed, Nov 26, 2008 at 8:13 AM, [EMAIL PROTECTED] wrote: Hmmm. Isn't life interesting. I would like to know how to block them and others without causing strange secondary problems. Actually a default pf configuration will let them pass unless I'm forgetting something important. ed I share your pain, Ed. I've had to perform 3 complete re-installations of computers in my household in the last year. Each time, I found a .limewire file in a user's application folder. The boys are now banned from my wife's computer. When the last culprit get's his computer back, he will find it running an operating system that is not supported by Limewire. The next time, he'll get it back without a network card. Andrew ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
Andrew Gould [EMAIL PROTECTED] escribió: On Wed, Nov 26, 2008 at 8:13 AM, [EMAIL PROTECTED] wrote: Hmmm. Isn't life interesting. I would like to know how to block them and others without causing strange secondary problems. Actually a default pf configuration will let them pass unless I'm forgetting something important. ed I share your pain, Ed. I've had to perform 3 complete re-installations of computers in my household in the last year. Each time, I found a .limewire file in a user's application folder. The boys are now banned from my wife's computer. When the last culprit get's his computer back, he will find it running an operating system that is not supported by Limewire. The next time, he'll get it back without a network card. Andrew :) I understand. Hopefully someone has a reasonably efficient pf or ipfw based solution. If it cuts some of the microsoft traffic that I am seeing much more of recently, I won't complain either. I have tried to control them by ip's and but domain names with limited success. Too many windows boxes at the office. have a great day, ed ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
sorry for asking but what are this limewire programs are? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
On Wed, Nov 26, 2008 at 10:42 AM, Wojciech Puchar [EMAIL PROTECTED] wrote: sorry for asking but what are this limewire programs are? My unofficial take on it is that limewire is a peer-to-peer sharing application used by Windows, Mac OS X and Linux users to share files, usually music, often copyrighted, over the internet. It is one of the fastest, most effective ways to spread viruses, trojans, spyware, etc. The program does not use fixed ports, so the services are hard to block. In essence, the program gets the user to bypass security measures from the inside. If I am incorrect in my technical assessment, I welcome a correction. When people ask my advice about computers, I always include: Never use Limewire, or anything like it. Andrew ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
[EMAIL PROTECTED] writes: Andrew Gould [EMAIL PROTECTED] escribió: On Wed, Nov 26, 2008 at 8:13 AM, [EMAIL PROTECTED] wrote: Hmmm. Isn't life interesting. I would like to know how to block them and others without causing strange secondary problems. Actually a default pf configuration will let them pass unless I'm forgetting something important. ed I share your pain, Ed. I've had to perform 3 complete re-installations of computers in my household in the last year. Each time, I found a .limewire file in a user's application folder. The boys are now banned from my wife's computer. When the last culprit get's his computer back, he will find it running an operating system that is not supported by Limewire. The next time, he'll get it back without a network card. Andrew :) I understand. Hopefully someone has a reasonably efficient pf or ipfw based solution. If it cuts some of the microsoft traffic that I am seeing much more of recently, I won't complain either. I have tried to control them by ip's and but domain names with limited success. Too many windows boxes at the office. Regardless of what you do to control the unwanted applications, I'd monitoring the traffic on the network as well. I don't put many limits on what my kid can do on the network, but he knows I'm looking over his shoulder. Virtually speaking. -- Lowell Gilbert, embedded/networking software engineer, Boston area http://be-well.ilk.org/~lowell/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
On Wed, 26 Nov 2008 10:54:43 -0600 Andrew Gould [EMAIL PROTECTED] wrote: On Wed, Nov 26, 2008 at 10:42 AM, Wojciech Puchar [EMAIL PROTECTED] wrote: sorry for asking but what are this limewire programs are? My unofficial take on it is that limewire is a peer-to-peer sharing application used by Windows, Mac OS X and Linux users to share files, usually music, often copyrighted, over the internet. It is one of the fastest, most effective ways to spread viruses, trojans, spyware, etc. Is this your FreeBSD POV or more windows oriented? The program does not use fixed ports, so the services are hard to block. In essence, the program gets the user to bypass security measures from the inside. I have never needed a block on limewire. Firstly, all main conmputers run solaris and therefore also limewire on solaris and secondly, all windows machines are virtual. So -IF- one of them is infected I just put a recent snapshot ;-) If I am incorrect in my technical assessment, I welcome a correction. Personally I'm not infected on windows machines recently by any limewire connections. But ymmv. When people ask my advice about computers, I always include: Never use Limewire, or anything like it. You can also say: use them but don't connect them to the net. I know, I'm cynical here, but limewire is not all bad! -- Dick Hoogendijk -- PGP/GnuPG key: 01D2433D + http://nagual.nl/ | SunOS sxce snv101 ++ + All that's really worth doing is what we do for others (Lewis Carrol) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
On Wed, 26 Nov 2008 10:54:43 -0600 Andrew Gould [EMAIL PROTECTED] wrote: On Wed, Nov 26, 2008 at 10:42 AM, Wojciech Puchar [EMAIL PROTECTED] wrote: sorry for asking but what are this limewire programs are? My unofficial take on it is that limewire is a peer-to-peer sharing application used by Windows, Mac OS X and Linux users to share files, usually music, often copyrighted, over the internet. It's a Gnutella client written in Java. It is one of the fastest, most effective ways to spread viruses, trojans, spyware, etc. The program does not use fixed ports, so the services are hard to block. In essence, the program gets the user to bypass security measures from the inside. There's nothing remarkable about that, no p2p filesharing application uses fixed ports. Some have default ports, but they are widely ignored because historically ISPs used those ports for throttling. When people ask my advice about computers, I always include: Never use Limewire, or anything like it. They are as dangerous as you want to make them, I've been using bittorrent and eD2k for years and have never seem a single virus, trojan etc. I've seen a few on USENET but they've always been laughably obvious. People that end-up with that kind of thing are normally actively seeking executables. If anyone wants to discuss p2p blocking I'd suggest you start a new thread. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
dick hoogendijk wrote: I know, I'm cynical here, but limewire is not all bad! ...and, BTW, Limewire port is readily available for FreeBSD: http://cvsweb.freebsd.org/ports/net-p2p/limewire LimeWire is a fast, easy-to-use file sharing program that contains no spyware, adware or other bundled software. Compatible with all major platforms and running over the Gnutella network, LimeWire's open source code http://www.limewire.org/, is freely available to the public and developed in part by a devoted programmer community... http://www.limewire.com/about/ Greetings! O.K. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
My unofficial take on it is that limewire is a peer-to-peer sharing application used by Windows, Mac OS X and Linux users to share files, usually music, often copyrighted, over the internet. It is one of the fastest, most effective ways to spread viruses, trojans, spyware, etc. that's my client's problem not mine ;) viruses don't work under FreeBSD. The program does not use fixed ports, so the services are hard to block. In as all my LANs uses nat, and i actually don't want to block it, i use natd with lots of redirect_port options. i give 3 ports to every user, most of that programs allows to specify what ports are 1:1 mapped to outside. at least bittorrent compatible things. torrent-compatible P2P programs are most usable of them. IMHO the only usable. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
When people ask my advice about computers, I always include: Never use Limewire, or anything like it. just downloading/sharing files allows you to download viruses, but it's up to you to run them. well unless P2P program is really broken, or you are sharing executables. for sharing movies, pictures, music there is no danger. or maybe there are, i don't know windoze bugs, maybe it's movie/music players have bugs that allows to run code from somehow prepared mp3 ;) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
dick hoogendijk wrote: My unofficial take on it is that limewire is a peer-to-peer sharing application used by Windows, Mac OS X and Linux users to share files, usually music, often copyrighted, over the internet. It is one of the fastest, most effective ways to spread viruses, trojans, spyware, etc. Is this your FreeBSD POV or more windows oriented? The program does not use fixed ports, so the services are hard to block. In essence, the program gets the user to bypass security measures from the inside. I have never needed a block on limewire. Firstly, all main conmputers run solaris and therefore also limewire on solaris and secondly, all windows machines are virtual. So -IF- one of them is infected I just put a recent snapshot ;-) Limewire is a windows only application. So how can you say it runs on solaris which is a flavor Unix? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
On Wed, 26 Nov 2008 09:28:49 -0600
Andrew Gould [EMAIL PROTECTED] wrote:
When the last culprit get's his computer back, he
will find it running an operating system that is not supported by Limewire.
DOS 6.0 ? :P it's java...
The next time, he'll get it back without a network card.
ouch, that's evil :D
_
{Beto|Norberto|Numard} Meijome
Unix gives you just enough rope to hang yourself --
and then a couple of more feet, just to be sure.
Eric Allman
I speak for myself, not my employer. Contents may be hot. Slippery when wet.
Reading disclaimers makes you go blind. Writing them is worse. You have been
Warned.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
On Wed, 26 Nov 2008 18:52:16 +
RW [EMAIL PROTECTED] wrote:
[..]
It is one of the
fastest, most effective ways to spread viruses, trojans, spyware, etc.
The program does not use fixed ports, so the services are hard to
block. In essence, the program gets the user to bypass security
measures from the inside.
There's nothing remarkable about that, no p2p filesharing application
uses fixed ports. Some have default ports, but they are widely ignored
because historically ISPs used those ports for throttling.
+1 . skype does the same thing. and it's p2p too , although a lot less so
than limewire.
When people ask my advice about computers, I always include: Never
use Limewire, or anything like it.
They are as dangerous as you want to make them, I've been using
bittorrent and eD2k for years and have never seem a single virus,
trojan etc. I've seen a few on USENET but they've always been laughably
obvious. People that end-up with that kind of thing are normally
actively seeking executables.
+1 - just the usual job of keeping an ear out for security holes ( including
those in your users' behaviour :P )
_
{Beto|Norberto|Numard} Meijome
Always do right. This will gratify some and astonish the rest.
Mark Twain
I speak for myself, not my employer. Contents may be hot. Slippery when wet.
Reading disclaimers makes you go blind. Writing them is worse. You have been
Warned.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
Fbsd1 wrote: [snip] Limewire is a windows only application. So how can you say it runs on solaris which is a flavor Unix? Limewire is a Java program. It will run on any platform which has a working Java run time environment installed. It is definitely not Windows only. -Jason ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
On Wed, 26 Nov 2008 21:40:27 +0800
Fbsd1 [EMAIL PROTECTED] wrote:
I have inclusive firewall rule set which means only packets matching
the rules are passed through. The inbound hight port numbers are
blocked by design.
How do other firewall users code rules to allow limewire to work?
Hi,
i think there are a few interesting posts in this thread (and several
corrections about p2p 'evilness', which is good :P ).
A thread that may be of interest was started on net@ earlier in the year - look
for :
From: Mike Makonnen [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: Application layer classifier for ipfw
Date: Thu, 31 Jul 2008 13:02:29 +0300
- it refers to ipfw, not pf.
- I think there was at least another thread following up on this with working
code,etc.
of course, DPI-style checks won't work (at all, or in a scalable fashion) as
soon as users start encrypting their packets :P
b
_
{Beto|Norberto|Numard} Meijome
I didn't attend the funeral, but I sent a nice letter saying I approved of
it.
Mark Twain
I speak for myself, not my employer. Contents may be hot. Slippery when wet.
Reading disclaimers makes you go blind. Writing them is worse. You have been
Warned.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
On Wed, Nov 26, 2008 at 6:40 PM, Fbsd1 [EMAIL PROTECTED] wrote: dick hoogendijk wrote: My unofficial take on it is that limewire is a peer-to-peer sharing application used by Windows, Mac OS X and Linux users to share files, usually music, often copyrighted, over the internet. It is one of the fastest, most effective ways to spread viruses, trojans, spyware, etc. Is this your FreeBSD POV or more windows oriented? The program does not use fixed ports, so the services are hard to block. In essence, the program gets the user to bypass security measures from the inside. I have never needed a block on limewire. Firstly, all main conmputers run solaris and therefore also limewire on solaris and secondly, all windows machines are virtual. So -IF- one of them is infected I just put a recent snapshot ;-) Limewire is a windows only application. So how can you say it runs on solaris which is a flavor Unix? The Limewire website says it has versions for Windows, Mac OS X, Linux and others, including OS/2 and Solaris. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: firewall rules for bitlord, yahoo, limewire
On Thu, Nov 27, 2008 at 12:25 AM, Andrew Gould [EMAIL PROTECTED] wrote: On Wed, Nov 26, 2008 at 6:40 PM, Fbsd1 [EMAIL PROTECTED] wrote: dick hoogendijk wrote: My unofficial take on it is that limewire is a peer-to-peer sharing application used by Windows, Mac OS X and Linux users to share files, usually music, often copyrighted, over the internet. It is one of the fastest, most effective ways to spread viruses, trojans, spyware, etc. Is this your FreeBSD POV or more windows oriented? The program does not use fixed ports, so the services are hard to block. In essence, the program gets the user to bypass security measures from the inside. I have never needed a block on limewire. Firstly, all main conmputers run solaris and therefore also limewire on solaris and secondly, all windows machines are virtual. So -IF- one of them is infected I just put a recent snapshot ;-) Limewire is a windows only application. So how can you say it runs on solaris which is a flavor Unix? The Limewire website says it has versions for Windows, Mac OS X, Linux and others, including OS/2 and Solaris. Yeah. Limewire is written in Java (iirc), which makes it extremely easy to port it to any system that can run java. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
