similar to: Multiply targets ?

--------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: kernel 2.2 and 2.4: syncookie vulnerability Advisory ID: RHSA-2001:142-15 Issue date: 2001-10-26 Updated on: 2001-11-02 Product: Red Hat Linux Keywords: syncookie security kernel Cross references: Obsoletes:

Hello, I current have a FreeBSD 4.8 bridge firewall that sits between 7 servers and the internet. The servers are being attacked with syn floods and go down multiple times a day. The 7 servers belong to a client, who runs redhat. I am trying to find a way to do some kind of syn flood protection inside the firewall. Any suggestions would be greatly appreciated. -- Ryan James ryan@mac2.net

hi, does someone tried bridge and or router functionality of linux kernel on multiprocessor system. Does multiprocessor system increase network performance or give ability to process higher traffic.. What about highest possible troughput someone have achieved ? etc.. tia _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl

John, I''m taking the liberty of copying the Shorwall Development list since I believe that these issues will be of interest. On Tue, 6 Aug 2002, Links at Momsview wrote: > Tom, > I''m not sure if you ever saw this document but it describes some of the > reasons you are seeing strange packets > after setting up NEW not SYN >

Is it possible to debug selected client only? because enabling debug globaly on production machine will fill up log directory within minutes. posibly something like: debug peer = ip_address_of_client

what is the limit on the arp cache entires ?! Does someone have very big LANs with linux-routers ? How big ? (i mean flat L2 network, not segmented) I want to know how much can my net can scale ? thanx _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Anyone to know iproute-save, iproute-restore like script similar iptables-save/restore ? that stores everytihng routes,rules,tables everything ... then init.d-script that among other things stores the state on shutdown :") (thats easy then) ----- http://linuxtoday.com/news_story.php3?ltsn=2004-12-08-004-32-OS-BZ-DT-0005 snip> MS Office is popular in the same way as heart disease is the

Hello, i''ve found this page (lartc currently down) http://www.lartc.org/howto/lartc.cookbook.synflood-protect.html where someone used iptables firewall mark to mark specific packets which will be shaped thru ingress qdisc with a fw filter and rate policy appended. I''ve tried similar this way, but it don''t work. Now i''m belief this could''nt work

Hi, after some problems, i successfuly ran my dovecot delivery and pigeonhole service in redhat EL 6. our users stored OpenLdap and users home folder like below: /home/vmail/domains/domainname.edu.tr/username/... now when i used default settings for dovecot sieve sieve = ~/.dovecot.sieve sieve_dir = ~/sieve sieve script write and work globaly and stored, /home/vmail/domains/sieve i looked

Hello, I use wavethresh packages to perform wavelet analysis. In particular, I would like to compare 2 signals (vectors) after a wavelet decomposition. I would like to use cor.test function, but this function acts on the entire vector values. I plan to perform a cor.test on each level of the wavelet decomposition, say N. So I will have at the end of a first step N results of cor.test. How can

Hi, folks @ freebsd-security. First, I am not sure if this is apropriate topic for that list, so sorry, if it is not. Some time ago I have read rfc1948 (protection from blind TCP spoofing) and became interested in the way how it is implemented in FreeBSD. After some googling (BTW if you like Google you might be interested in this: http://register.spectator.ru/img/bart.gif ), I found this:

So, returning from the LDAP userdb does not change situation. As I said, I would to set folder names dynamicaly, without setting up a mailbox in advance. Here the problem is discussed http://www.dovecot.org/list/dovecot/2013-August/092023.html but no solution is found apart from defining the namespace in the static config, see here http://www.dovecot.org/list/dovecot/2013-August/092053.html As

In a rails script (something in the "script" dir with the good require) I added many document (around 4000) to an index globaly instanciate (and build if not present) in config/environment.rb. I ran 3 three times my script (I deleted my index every time before), and only the third was successful. That was STRANGE ! :) These are the errors :

> Message: 8 > Date: Fri, 14 Mar 2003 21:49:49 +0200 > From: raptor <raptor@tvskat.net> > To: lartc@mailman.ds9a.nl > Subject: [LARTC] [tcng] X:Y to tcng corespondence ! > > Is there a easy way that I to get class-id<----->tcng-class-path conversation.... and vs. versa.. > > --__--__-- There are couple files can be created by tcc: # cat a.tc dev

hi I would like to ask is the following config correct for what I want to achieve ... Scenario: I have 3 networks 192.168.12.0/24, 192.168.48.0/24, 192.168.56.0/24 and most of the users use 1 IP, some of them more... If I make flat u32-filter search the box will make aprox/max 3 * 256 = 768 checks for every IP, so i''m deciding to deploy u32 hashes.. Here is the config I think to use

Hi, I have config like this ,... but all traffic goes to the default class 1:4, WHY ? What I'' doing wrong... filters are attached to the root ! tc qdisc add dev eth0 handle 1:0 root htb default 4 tc class add dev eth0 parent 1:0 classid 1:4 htb rate 55kbit ceil 55kbit prio 7 <--default class tc class add dev eth0 parent 1:0 classid 1:1 htb rate 20Mbit tc qdisc add dev

On a Linux Server running tincd I noticed the following log message in /var/log/messages kernel: possible SYN flooding on port 655. Sending cookies. I found this on the web: If SYN cookies are enabled, then the kernel doesn't track half open connections at all. Instead it knows from the sequence number in the following ACK datagram that the ACK very probably follows a SYN and a SYN-ACK.

My guys, My firewall seems to block an attack my Centos / Sendmail boxes on port 110. These servers require a reboot after each attack. My firewall says it's blocked? Do I need to patch something on sendmail? Or is my firewall not doing its job (Sonicwall)? This is not the first time this has happened. 11/20/2008 02:53:04.864 - SYN flood attack dropped - 75.2.205.141, 48102 -

Thomas Boernert wrote: > we've a big problem with the new version. > we're using key authentication and in the > sshd_config on the server ist "PasswordAuthentication no". > in this case password authentication should be rejected. > But in the new release it does'nt work !!! > > i do > # ssh server > Enter passphrase for key

* Thorsten Hater <thorsten.hater at gmail.com> 2017.01.17 12:04: > userdb { > driver = static > args = namespace/inbox/mailbox/Bla/autoexpunge=6h > } I'm almost sure that 'driver = static' contradicts the concept of userdb overrides: http://wiki.dovecot.org/UserDatabase/ExtraFields If you can't go with 'passwd-file' style settings, you may able