At 06:01 AM 1/11/02 +0100, martin f krafft wrote:
>okay, why libwrap then?
Once the network is compromised, it makes no difference what's on the box.
If done properly, the compromised network is indistinguishable from the
uncompromised network. That box is totally on it's own. :)
>/29, although
At 04:22 AM 1/11/02 +0100, martin f krafft wrote:
>a bogus IP won't even make it past OSI layer 4 on debian... rp_filter...
There are ways of doing it such that the box has NO WAY of knowing that the
traffic is spoofed. Granted, that is hard to do. Even paranoid lookups can
be overcome. But it'
At 10:01 PM 1/10/02 -0600, Nathan E Norman wrote:
>Congratulations ... you just set up your DNS incorrectly. Every PTR
>entry should resolve to a _unique_ name, and that name should resolve
>to a _unique_ IP. That doesn't mean you can't have additional A
>records doing load balancing.
To give a
Well, the rationale behind this is as you touched on, preventing spoofed
address attacks. A paranoid lookup essentially verifies that the connecting
system is a known legit host. In effect you're using your DNS system as
another level of authentication. Say somebody wants to covertly log on or
a
So right now everything is on the / partition? Then what you want to do is
blow away that huge unused partition and make partitions for atleast /tmp
/var /home. /usr if you want plus the swap. You need to size out how much
room each of those dir trees is going to need. Then take the box offline
Ah, so you're tricking lilo into thinking that /dev/hdc is /dev/hda. Very
clever.
At 07:26 PM 5/18/00 -0700, Tril wrote:
>Here's a URL that explains how to install LILO onto a drive other than the
>boot drive. Use the poorly documented features of lilo, "disk=" and
>"bios=":
>
>"Installing hdc
It's not too hard to find pine*.deb. Use Fast FTP Search.
At 09:54 AM 5/19/00 +0800, Sanjeev \"Ghane\" Gupta wrote:
>Because Univ of Washington doesn't allow modified tarballs to be
>distributed, and you have to modify the tarball's paths to be Debian
>compliant.
+---
If kickstart is a red hat package, you can install it on debian using alien.
Then you can use red hat's kickstart to install debian. :)
At 01:55 PM 5/18/00 -0400, Jeremy Hansen wrote:
>Most of the answers I've been getting on this subject seem like total
>hacks, which may work but really are trick
At 12:48 PM 5/18/00 +0200, Dariush Pietrzak wrote:
>That was the original scheme, but bosses hmmm, after some consultations
>said that we should transfer data on cd-roms with armed guardian.
>so now we've got problems, and deadlines haven't changed
>although we had no idea of those security issues
At 04:36 PM 5/18/00 +0500, Vlad Harchev wrote:
> I think you can install NIC into machine with data (call it machine A), place
>another machine with large hdd with NIC in it near the source machine A (call
>it machine B), connect them using crosswired UTP, download data to machine B,
A laptop woul
At 09:55 PM 5/17/00 -0700, Karl M. Hegbloom wrote:
> copy everything from the master drive to the copy, then run the
> appropriate Lilo command to make that copy bootable. You can then
> mount it in another machine and it's ready to go. You have to filter
> some things out when you copy. See bel
Sorry, but I was so underwhelmed by rpm's capabilities and my reaction was
so one sidedly negative that I can't describe it any other way. It is what
I typed.
At 02:55 PM 5/17/00 +0200, Wichert Akkerman wrote:
>Previously Chris Wagner wrote:
>> RPM is a piece of crap compared
I have to disagree there. I've found Debian packs to be extremely up to
date, atleast on the security end. And even on routine maintanance, the lag
is not that bad.
At 08:44 PM 5/16/00 -0700, David Lynn wrote:
>I agree - dpkg and apt are great compared to rpm's. However, that's all
>assuming th
At 07:29 PM 5/16/00 -0400, Jeremy Hansen wrote:
>I'm a long time Red Hat user. Basically the company I'm working for is
Sorry about that. :)
>Dpkg vs RPM
RPM is a piece of crap compared to dpkg, and now we have apt (advanced
package tool). It's a handler for dpkg, but it's intelligent. The ki
At 12:22 PM 11/27/99 -0200, Paulo Henrique Baptista de Oliveira wrote:
> Yes. No software extra needed? PPP? just as simple as ethernet.
Right.
--
__ _ _ _ ____
| | | \ | \ | \ / | \\ / /
At 08:17 AM 2/10/99 +0100, Juergen Nagler wrote:
>But how would you then explain this:
[snip]
>sol:forrest[~]>ll /var/spool/mail/forrest /var/spool/mail/testuser
>-rw--- 1 forrest mail55651 Feb 10 07:46 /var/spool/mail/forrest
>-rw-rw 1 forrest mail 962560 Feb 10 08:11
16 matches
Mail list logo
