Also bad form to top post. Should i amso mispell some words so you can amuae
yourself?
--
Michael Scheidell, CTO
SECNAP Network Security
-Original message-
From: Mark Andrews ma...@isc.org
To: Michael Scheidell michael.scheid...@secnap.com
Cc: freebsd-security@freebsd.org freebsd
not used for any kind of illegal activities.
so, option C:
being too paranoid and I should get more rest :-)
I will try to track down what server is lookup up
cache.freebsd.lublin.pl and see why its doing that.
thanks.
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
ISN: 1259*1300
On 12/11/10 11:05 AM, Michael Scheidell wrote:
I am just not working on tracking this down, and sometimes like to use
tcpdump/tshark to watch specific packets on a host to look for
'interesting' things.
I think I have seen this since 6.x I don't remember it on 5.x, but
5.x used 'bridge' and 6
and me are
interested. with that huge response, I guess its never going to happen.
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
ISN: 1259*1300
*| *SECNAP Network Security Corporation
* Certified SNORT Integrator
* 2008-9 Hot Company Award Winner, World Executive Alliance
role designated state forwarding
member: em1 flags=1e7LEARNING,DISCOVER,STP,EDGE,AUTOEDGE,PTP,AUTOPTP
ifmaxaddr 0 port 2 priority 128 path cost 200 proto rstp
role designated state forwarding
so, what magic to make bpf filters work?
--
Michael Scheidell, CTO
o: 561
Any interest in Tripwire Commercial version?
I have a client who wants to allow their enterprise tripwire console to
be able to monitor the servers that do the real work (the freebsd
servers) as well as the token windows servers which are being monitored now.
What version would you like to
NOTE WELL: If a port number is specified via the query-source or
query-source-v6 options to BIND, randomized port selection will not be
used. Consequently it is strongly recommended that these options not
be used to specify fixed port numbers
--
Michael Scheidell, CTO
|SECNAP Network Security
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Chris Byrnes
Sent: Wednesday, August 01, 2007 6:13 PM
To: freebsd-security@freebsd.org
Subject: Re: FreeBSD Security Advisory FreeBSD-SA-07:07.bind
Stop in /usr/src/usr.sbin/named.
Anyone
Why would you think any of these had anything to do with Freebsd?
They all clearly state 'Apple DMG'. (a compressed disk image only for
Apple Max OSX)
--
Michael Scheidell, CTO
SECNAP Network Security Corporation
Web based Security and privacy Training:
http://www.secnap.com/training
-Original Message-
From: R. B. Riddick [mailto:[EMAIL PROTECTED]
Sent: Tuesday, August 08, 2006 4:12 AM
To: Michael Scheidell; freebsd-security@freebsd.org
Subject: Re: seeding dev/random in 5.5
I think that during the first reboot after a fresh install
the kern.random.sys
(which, acknowledged: if hacker is trying to seed known data to this
box, he could feed it known data)
--
Michael Scheidell, CTO
SECNAP Network Security / www.secnap.com
[EMAIL PROTECTED] / 1+561-999-5000, x 1131
___
freebsd-security@freebsd.org
R. B. Riddick wrote:
--- Michael Scheidell [EMAIL PROTECTED] wrote:
R. B. Riddick wrote:
Why do u believe, that /dev/random isnt seeded by networking?
because it isn't.
and pings arn' going to produce much random data.
Hmm... Interesting...
it might feed
intended] things that can happen when you
install a new system, that I would like to try to eliminate one of them.
--
Michael Scheidell, CTO
SECNAP Network Security / www.secnap.com
[EMAIL PROTECTED] / 1+561-999-5000, x 1131
___
freebsd-security@freebsd.org
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED]
Sent: Friday, July 21, 2006 12:43 AM
To: Clemens Renner
Cc: freebsd-security@freebsd.org
Subject: Re: Port scan from Apache?
Clemens Renner wrote:
Hi everyone,
today I got
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of talonz
Sent: Sunday, June 11, 2006 7:28 PM
To: Remco Bressers
Cc: freebsd-security@freebsd.org
Subject: Re: Anyone running ntop on FBSD5.4
Remco Bressers wrote:
I had this same problem as well.
If you are running ntop on 5.4, what compile options?
Use ports version? Or surgefile tarball?
It makes a great security forensics tools, but I can't get it to stop
segfaulting.Was wondering if anyone found a fix for it.
--
Michael Scheidell, CTO
561-999-5000, ext 1131
SECNAP Network Security
Attempted to install dlint port.
Only distribution site is www.domtools.com
Email to '[EMAIL PROTECTED]' and [EMAIL PROTECTED] bounces (can't
relay)
Phone number missing on whois record.
Fetch of tarball fails checksum (it delivers a generic 'web hosted
search engine that just hijacked
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Borja Marcos
Sent: Tuesday, December 13, 2005 11:00 AM
To: freebsd-security@freebsd.org
Subject: Useful addition to ipfw
Hello,
I've found myself in a situation where a simple data
This was in bugtraq, and hasn't shown up in portaudit yet so I thought I
would send it and the fix to you.
I submitted a pr for a patch as well. (but for some reason, ir bounced)
Problem #1:
Clamav 87 has been found to have a security vulnerability that
could
lead to
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Simon L. Nielsen
Sent: Wednesday, September 07, 2005 7:35 AM
To: Dmitry Pryanishnikov
Cc: freebsd-security@freebsd.org
Subject: Re: Problem with portaudit's database
On 2005.09.07 10:35:21 +0300,
I use that all the time, maybe 1 out of 100 times it will kill
a ssh session (only one that has irssi open cause of the time
updating it kills it, i have it set to update every second
though, so normally it'd be like 1 out of 500 or so) and even
if it does, it still finishes loading the
21 matches
Mail list logo