search for: polcies

FYI >To: misc@openbsd.org >Subject: FreeBSD hiding security stuff >Date: Fri, 04 Mar 2005 03:51:42 -0700 >From: Theo de Raadt <deraadt@cvs.openbsd.org> > >A few FreeBSD developers apparently have found some security issue >of some sort affecting i386 operating systems in some cases. > >They have refused to give us real details. > >A promise is now being

...m/how-to-disable-usb-ports-using-group-policy/ Only i did not do this as computer policy but as user policy. In short, 1) create 2 groups: USB-Allowed USB-Denied 2) create 2 policies objects, USB-Allowed USB-Denied And set in the allow polices ( as shown in the link but under the user polcies ) 3) add correct group to the same GPO object. ( allowed with allowed , etc ) 3) link the polcies objects in a OU where you can test and where the user is. 4) set the order of these policies to Allowed above the Denied. Order 123 , is applied as 3 2 1. 1 is highest so.. This is bit like i...

Anyone ?|Another try and now with the info asked 4. |nl1cat wrote: | Hello.. | I have a somewhat "funny" setup. | I use the dosemulator Dosemu for running a dos based packetradio nodeprogram | called Xrouter. | I setup dosemu to use my eth1 (lan) nic and i bring up a device called dsn0. | (this is all running on Slackware 9.1 without X) | insmod /etc/dosemu/dosnet.o | sleep 2 | ifconfig

Well, I *tried* to CC: freebsd-security... I'm forwarding this to get around the "posting from wrong address" filter. -------- Original Message -------- Subject: Re: FW:FreeBSD hiding security stuff Date: Fri, 04 Mar 2005 04:42:48 -0800 From: Colin Percival <cperciva@freebsd.org> To: Jonathan Weiss <tomonage2@gmx.de> CC: freebsd-security@freebsd.org, FreeBSD-Hackers

Greetings Samba users, I'm the proud administrator of a samba 3 domain with openldap backend. All is well but for one niggling little problem which i hope somebody could help me with ?. My pdc is set up as a time server "time server = yes" and I have created a logon script with the following entry : net time \\mypdc /set /yes Now, when i logon to a windows 2k domain client as

Hai, After lots of testing and checking today im must concluded that achim and mathias are right. There are "BUILDIN\" security groups which make some GPOs are going wrong. Also, im getting errors again with sysvolcheck. .. i was in the understanding this was resolved.. but im but off with all info, very buzy at the office atm. samba-tool ntacl sysvolcheck ERROR(<class

...3upgrade ------------------------------- The new samba-tool domain samba3upgrade command is a supported upgrade route from Samba 3.x domain controllers to Samba 4.0 AD domain controllers. This provides a one-time migration of all users, domain members, passwords, groups, group members and account polcies. This tool is still under development and may fail when presented with an inconsistant Samba3 database (such as many LDAP configurations). We hope to improve the error handling and recovery in these situations, so please provide feedback using the samba-technical mailing list. KNOWN ISSUES =====...

...st[!]=<address>[/<mask>] (only available with mode=tunnel). Because tunnel source and destination are dependent on the direction of the traffic, these options should only appear in the IN OPTIONS and OUT OPTIONS columns. strict (if specified, packets must match all policies; polcies are delimited by ''next''). next (only available with strict) Examples: #ZONE IPSEC OPTIONS IN OUT # ONLY OPTIONS OPTIONS vpn Yes mode=tunnel,proto=esp spi=1000 spi=1001 loc No reqid=44,mode=transport The /etc/shorewall/masq file has a new IPSEC column a...

Hi, We have a 256 kbits/s (kilobits per second) link to the internet. it is a router running Linux that belongs to our ISP. They have given us 8 internet ips. (i.e- subnet is 255.255.255.248). one has been given to this router. I have given another internet ip to the firewall running CentOS 4.5. iptables is running on it. And also, I have installed iproute2 pkg as well. pls see below for

Are there any known vulnerabilities in portmap (redhat''s portmap-4.0-7b)? I''ve been receiving a lot of attempts to access the portmap port on some linuxppc machines I administer by various machines which clearly have no business with mine, and I wonder if this is an attempt to break in to my machines. I''ve searched some archives, but I haven''t yet found any