Focus on Linux Mode:
(Page 18 of 57)  < Prev  13 14 15 16 17 18 19 20 21 22 23  Next >
Re[2]: Linux hardening 2005-08-23
Kir (kir_daemon front ru)
> How did u modify your wget or curl for not to download to /tmp and /var/tmp?

> pavan.

It`s simple, really: you can modify source code of the wget
to include string matching (strncmp(url, "/tmp", 4)) and
throwing exception on positive result. Then all you need to
do is recompile code and r

[ more ]  [ reply ]
RE: Linux hardening 2005-08-23
christoph puetz thomson com


You can try to install APF (Firewall) and BFD (Brute Force Detection)
and also follow some of the steps outlined here:

http://www.webhostingresourcekit.com/109.html

APF and BFD are made by rfxnetworks.com. BFD will automatically block
attackers if they fail to authenticate 5 times by using APF.

[ more ]  [ reply ]
RE: linux password cracking tools 2005-08-23
Bénoni MARTIN (Benoni MARTIN libertis ga)
There are so plenty password cracking tools around the web:

- Anger
- Cain & Abel
- Crack
- Hydra
- John The Ripper
- LCP
- LM Crack
- L0phtCrack 4
- PWdump3
- RainbowCrack
- THC KeyFinder
- Venom
- YaHa
- ...

Some should be more relevant than others, depending on what kind of passwords you w

[ more ]  [ reply ]
linux password cracking tools 2005-08-23
paavan shah (paavan shah gmail com) (1 replies)
hello all!!

Can anyone suggest me good password cracking tools in linux?
I am from India ,i have heard that there are password list available
for indian names and so on.

I want to check ,the strength of my linux password against this cracking tools.

regards,
Pavan Shah

[ more ]  [ reply ]
Re: linux password cracking tools 2005-08-23
wormlord (wormlord wanadoo fr)
Re: Linux hardening 2005-08-23
Jon Hart (warchild spoofed org)
On Mon, Aug 22, 2005 at 01:49:25PM -0400, Sean Finkel wrote:
> I would recommend also securing /tmp (and /var/tmp). Mounting it noexec
> and nosuid is a good step to take. As well, I modified my local wget and
> curl programs to *not* download to /tmp or /var/tmp, as no legitimate
> use for the p

[ more ]  [ reply ]
Re: Linux hardening 2005-08-22
AragonX (aragonx dcsnow com) (2 replies)
<quote who="Sean Finkel">
> I would recommend also securing /tmp (and /var/tmp). Mounting it noexec
> and nosuid is a good step to take. As well, I modified my local wget and
> curl programs to *not* download to /tmp or /var/tmp, as no legitimate
> use for the program (on my servers) will be downloa

[ more ]  [ reply ]
Re: Linux hardening 2005-08-23
paavan shah (paavan shah gmail com)
Re: Linux hardening 2005-08-23
Sagiko (sagiko gmail com)
RE: one time passwords 2005-08-22
Billy Dodson (billy pmicromart com)
One time passwords such as RSA secure ID's, are useful for remote
access. VPN, email web access, and online banking sign-ons is where I
have seen this in use. You can configure RSA type token ID's to work
with a Radius or Tacacs server, vpn devices, LDAP directory logins, etc.
Hope this helps.

[ more ]  [ reply ]
Re: SMB : TCP/445 impossible to sniff a document sent to be printed to a MS Spooler Server 2005-08-22
Scott Gifford (sgifford suspectclass com)
"Zow" Terry Brugger <zow (at) llnl (dot) gov [email concealed]> writes:

[...]

> Now then, I wouldn't say it's impossible to use it. I would imagine
> that there have got to be tools to display PCL.

Indeed. GhostPCL, for example:

http://www.artifex.com/downloads/

----Scott.

[ more ]  [ reply ]
one time passwords 2005-08-20
paavan shah (paavan shah gmail com)
hello friends!!

I just read an article on one time passwords.Can anyone suggest me the
correct use of one time passwords?

I mean under which cirumstances one time passwords are used?What
applications can use one time passwords?

regards,
Pavan Shah

[ more ]  [ reply ]
Re: one time passwords 2005-08-22
Kaveh Razavi (c0d3rz_team yahoo com)

onetime passwords are being expired every time you log
in to your pc , it is handy when you know at your
network there are people who use simple passwords for
about a month or more , using one time password is
good idea and will increase security in some ways the
problem is as I see many people for

[ more ]  [ reply ]
Linux hardening 2005-08-21
AragonX (aragonx dcsnow com) (3 replies)
I had an intrusion on one of my servers and am in the process of hardening
it (after a reinstall). I'm using Fedora Core 4. I've taken all the
basic steps (shutting down unused services etc) and have done the
following:

Installed Smothwall on a separate box.
Installed & configured AIDE, Snort and

[ more ]  [ reply ]
Re: Linux hardening 2005-08-23
Roman Shirokov ("forward " vlz ru)
Re: Linux hardening 2005-08-22
Sean Finkel (lists protollix com)
Re: Linux hardening 2005-08-22
Daniel Cid (danielcid yahoo com br)
Re: Content Filtering Firewall in Linux.. 2005-08-19
Matt Carpenter alticor com
That's a great combination, but only if you're only interested in
Proxyable traffic like HTTP.

Matthew Carpenter
IT Security Specialist
Alticor Corporation
Phone: 616-787-0287
Email: matt.carpenter (at) alticor (dot) com [email concealed]
Page Me (230 characters Max)
Email ITSS On-Call Account

-----BEGIN PGP PUBLIC KEY FI

[ more ]  [ reply ]
SMB : TCP/445 impossible to sniff a document sent to be printed to a MS Spooler Server 2005-08-19
pejman gohari gmail com (1 replies)
Hi all,

I'm focused on SMB sniffing: TCP/445 and I have basic architecture:
( PC --> Microsoft spooler server:TCP/445 --> Printer )

I would like to prove that it's possible to capture and decrypt all document sent by the PC to Microsoft Spooler server to be printed.

With Ethereal/SMBspy or just

[ more ]  [ reply ]
Re: Content Filtering Firewall in Linux.. 2005-08-19
Andrew Rucker Jones (arjones simultan dyndns org) (1 replies)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

Hrvoje Spoljar wrote:
> You are looking for layer7 iptables patch.
> http://l7-filter.sourceforge.net/

No, You're really not. This was made for quality of service and suffers
the same problems as Netfilter with hex string support. Think about
this

[ more ]  [ reply ]
Re: Content Filtering Firewall in Linux.. 2005-08-19
Hrvoje Spoljar (hrvoje spoljar x pbf hr)
Re: OPIE 2005-08-19
Lars Solberg (sunberg gmail com)
Hi

Thanks for all the answers, however I found out that the thing I was
looking for in the first place was http://www.inner.net/pub/opie/.
That project seams very out dated now. Last updated 1998, it only have
one test version after that soo I dont know if this package is soo
secure any longer.
I'

[ more ]  [ reply ]
Re: OPIE 2005-08-18
Daniel Hulme (bugtraq doublezero uklinux net)
> > I'v been looking around a lot now, after opie (one time password in
> > everything) related stuff. The orginal dev site was lokated at
> > http://inner.net/opie/ but it seams like that link is dead.
> > I know the opie project stalled in 1998 some times but some BSD
> > people made a rewrite in

[ more ]  [ reply ]
Re: OPIE 2005-08-18
Daniel Cross (daniel asterisk co nz)
ERACC wrote:

>On Wednesday 17 August 2005 09:18 pm
>Lars Solberg wrote:
>
>
>
>>I'v been looking around a lot now, after opie (one time password in
>>everything) related stuff. The orginal dev site was lokated at
>>http://inner.net/opie/ but it seams like that link is dead.
>>I know the opie proj

[ more ]  [ reply ]
Re: Content Filtering Firewall in Linux.. 2005-08-18
Tucker (gtucker google com) (2 replies)
Anyone have any experience with Endian?
http://www.efw.it/wiki/index.php/Main_Page

Looks like a pretty good All-In-One thing. I'm trying to help an old
teacher of mine setup a small school. My goal is to have to go and
fiddle with it as little as possible. (read as: find something easy
enough fo

[ more ]  [ reply ]
Re: Content Filtering Firewall in Linux.. 2005-08-20
Chris Mason (masonc masonc com)
Re: Content Filtering Firewall in Linux.. 2005-08-19
ben creitz (benjaminworthcreitz yahoo com)
(Page 18 of 57)  < Prev  13 14 15 16 17 18 19 20 21 22 23  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus