similar to: What are some programs to use to trace spoofers?

[mod: This discussion has been going on "offline" with an occasional CC to linux-security. By the time I got around to do another "moderation round" this one was the latest. Everyone is keeping good context, so I think you all will be able to follow the discussion. --REW] >>>>> <seifried@seifried.org> writes: >> The only thing I can see coming out

I was wondering if anyone here has or knows how to implement ttysnoop w/ssh ?

Hi there, Is there some way to configure ipfw to do traffic normalizing ("scrubbing", as in ipf for OpenBSD)? Is there any tool to do it for FreeBSD firewalling? I've heard that ipf was ported on current, anything else? TIA, /Dorin. __________________________________ Do you Yahoo!? Yahoo! Mail SpamGuard - Read only the mail you want. http://antispam.yahoo.com/tools

Got a problem: a user's workstation froze. He wound up rebooting, without calling me in first, so I dunno. But, and this is a show-stopper, when it came up, it came up with the firmware MAC, not the spoofed one. In /etc/sysconfig/network-scripts/ifcg-eth0, I've got the spoofed MAC address, and a UUID. In the grub.conf, I've got net.ifnames=0 biosdevname=0. But when I logged onto his

I''ve kept this one on the back burner for a while, waiting for it to mature before attempting to use it, and now having seen OpenBSD ship with IPSec I''m getting a bit impatient =). What is the status of IPSec for Linux (and more specifically RedHat)? By this I mean I just did some www browsing/etc and found about a half dozen different implimentations, ranging from NRL, to a

Hi everyone, every comment about this: http://xforce.iss.net/xforce/xfdb/16264 Didn't find any hint or patch on http://www.xfree86.org/security/. Best regards Konrad Heuer (kheuer2@gwdg.de) ____ ___ _______ GWDG / __/______ ___ / _ )/ __/ _ \ Am Fassberg / _// __/ -_) -_) _ |\ \/ // / 37077 Goettingen /_/ /_/

Good day: I am trying to use readcsvIts("nwr_data_qc.txt",informat=its.format("%Y%m%d%h%M %Y"),header=TRUE,sep="",skip=0,row.names=NULL,as.is=TRUE,dec=".") to read in a file (nwr_data_qc.txt) that looks like this: Time Y M D H Min CO2 2000.18790 2000. 3. 9. 18. 30. 373.60 2000.20156 2000. 3. 14. 18. 30. 373.34

I've just upgraded my rsync server to 2.5.1 (before, I was using 2.4.6), without changing anything in /etc/rsyncd.conf, and now, I have this logs each time a client connect to server: 2002/01/07 18:33:03 [10432] rsync: reverse name lookup mismatch on fd3 - spoofed address? 2002/01/07 18:33:03 [10432] rsync on admin/sbin/padmin_update.sh from UNKNOWN (172.16.65.14) 2002/01/07 18:33:03 [10432]

On 7/8/20 10:02 AM, Ken Cox wrote: > > On 7/8/20 1:30 AM, Stefan Assmann wrote: >> On 2020-07-06 10:01, Laine Stump wrote: >>> On 7/6/20 5:10 AM, Yalan Zhang wrote: >>>> Hi Laine, >>>> >>>> For the feature testing before, I only test the linux bridge setting as >>>> in 2), it works. >>>> Now I tried 1), to use

Tough to get a spoofed IP to actually route back to it's host though, so other than those unfortunate to be on a flat network, still not too much of an issue . . . - Tim On 09/12/2016 04:46 PM, Stuart D. Gathman wrote: > On Mon, 12 Sep 2016, Tim Dawson wrote: > >> Or just set up sane firewall rules to allow the two to talk, but block >> external traffic. I have run this

Hello Samba Community, I would like to seek advice as my Samba AD tends to consume high memory usage caused by KDC service. This issue will always come back within a couple of days after I restart samba-ad-dc service. It does not help by increasing memory. >From message log: kernel: Out of memory: Kill process 14527 (samba) score 873 or sacrifice child Identified pid 14527 belongs to

Hi Rowland, Noted with thanks. Regards On Mon, Jul 22, 2019 at 4:31 PM Rowland penny via samba < samba at lists.samba.org> wrote: > On 22/07/2019 09:23, Alfonso Conner wrote: > > Hi Rowland, > > > > In fact currently in my test environment using the same version of OS > > 6.10 and Samba 4.8.5. > > I ran 'netstat -plaunt | egrep

I have chunk of data that I need for the life of the session. I am going to use it for selects through out my app. Is the best place to keep this data in the session? Is the session easily spoofed or cracked? While viewing the data is not critical in itself, spoofing it could cause me massive headaches. -- Posted via http://www.ruby-forum.com/.

On 2020-07-06 10:01, Laine Stump wrote: > On 7/6/20 5:10 AM, Yalan Zhang wrote: > > > > Hi Laine, > > > > For the feature testing before, I only test the linux bridge setting as > > in 2), it works. > > Now I tried 1), to use macvtap bridge mode connected to the PF, it can > > not work as the hostdev interface can not get dhcp ip address on the >

---------- Forwarded message ---------- Date: Tue, 30 Jun 1998 15:10:47 +0800 From: David Luyer <luyer@UCS.UWA.EDU.AU> To: BUGTRAQ@NETSPACE.ORG Subject: Serious Linux 2.0.34 security problem I just saw this mentioned on linux-kernel and confirmed it; #include <fcntl.h> #include <errno.h> #include <stdio.h> #include <stdlib.h> #include <unistd.h> int main(int

We've been required to encrypt h/ds, and so have been rolling that out over the last year or so. Thing is, you need to put in a password, of course, to boot the system. My manager found a way to allow us to reboot without being at the system's keyboard, a package called clevis. Works fine... except in a couple of very special cases. Those systems, the problem is that, due to older

Hi, I have the following Problem: My Rootserver stands at a hoster, I run a debian sarge and installed Xen 3 there latetly. I booted the xen Kernel - everything ok. However: when I started xend, the server instantly stopped responding. My Hosters Support said, that was due to a sort of mac spoofing protection in the switch, which disabled the Port, to which my server is connected, because there

I get the following log messages using rsync 2.5.1 compiled on Solaris 8 when using the "hosts allow" option in rsyncd.conf: 2002/01/23 12:09:51 [28276] rsync: reverse name lookup mismatch on fd0 - spoofed address? 2002/01/23 12:10:18 [28276] rsync: connection unexpectedly closed (16 bytes read so far) Resolv.conf/DNS are configured and working properly with both A and PTR records

I'm planning on attending the LLVM Developer's Meeting. Thanks! - Josh ~~~~~~ Josh Conner Apple, Inc.

On Sun, Jan 18, 2015 at 11:11 AM, Patrick Masotta <masottaus at yahoo.com> wrote: >> As per >> prior discussions, the "From:" field should remain >> with the >> original sender. One (important) >> reason is that frequent participants >> in the >> Syslinux Mailing List tend to use the "From:" >> field, for >> instance