similar to: Securing RPC

Dear Members I hope you are all doing well. I am busy teaching myself iptables and was wondering if I may get some advise. The scenario is the following: 1. Default policy is to block all traffic 2. Allow web traffic and SSH 3. Allow other applications I have come up with the following: #!/bin/bash # RESET CURRENT RULE BASE iptables -F service iptables save # DEFAULT FIREWALL

Dear Members Thank you for your replies. @Anthony K. -- One of the articles that I have read mentioned that the file gets read from the top to bottom and apply the rules accordingly. In addition the article also explained that if there is no matching rule, the default policy will be applied. The writer suggested that rules with the highest chance to match should be in the beginning of the

https://bugzilla.samba.org/show_bug.cgi?id=6116 Summary: Cannot access files in exposed shadow drive in version 3.0.5 Product: rsync Version: 3.0.5 Platform: x86 OS/Version: Windows NT Status: NEW Severity: normal Priority: P3 Component: core AssignedTo: wayned@samba.org

Dear Community I am trying to install MySQL 5.6 on a Raspberry PI 3B.?? Using my normal procedure by downloading the yum repo rpm and installing MySQL through that is not working.? There is no rpm information for arm7. Can anyone please point me in a direction where I can find a procedure on how to install MySQL 5.6 on Centos 7 running on a PI3? Kind Regards, Leon

Hello Leon. In addition to everything else mentioned in this thread, I'd recommend you a great book on the topic. "Attack Detection and Response with iptables, psad, and fwsnort by Michael Rash" It contains a really nice and detailed guide on iptables and most common attacks, nmap, psad and snort. Regarding your config, I'd like to point several things: 1. You're not

I have a Rails app that is a directory indexer. It passes the desired directory path in the url. There is a user table, and a permissions table (which contains the volumes each user has permission to see). There is also a volume table, which contains the available volumes, and a path table, which contains the paths to every file available on the machine. [There are other tables, but these

Hi, I've got an ageing NT4 server on our NT4 domain. The hardware is getting unreliable and few people use it. Unfortunately/predicatably the few people who use it are senior staff and they have some (important, naturally) Excel spreadsheets which link to files on this server by name. As I haven't been entirely successful in weening them off this server I've been keeping it ticking

Dear all, How can I get the duplicated elements from a vector? For example, x <- c("yes", "no", "yes", "yes", "no", "not sure"), how can I filter out all the elements which occured >=2 times? Thanks for any help! Regards, Leon

On Sat, Jul 29, 2017 at 08:47:08PM +0800, Wei Wang wrote: > On 07/29/2017 07:08 AM, Michael S. Tsirkin wrote: > > On Thu, Jul 27, 2017 at 10:50:11AM +0800, Wei Wang wrote: > > > > > > OK I thought this over. While we might need these new APIs in > > > > > > the future, I think that at the moment, there's a way to implement > > > > >

On Sat, Jul 29, 2017 at 08:47:08PM +0800, Wei Wang wrote: > On 07/29/2017 07:08 AM, Michael S. Tsirkin wrote: > > On Thu, Jul 27, 2017 at 10:50:11AM +0800, Wei Wang wrote: > > > > > > OK I thought this over. While we might need these new APIs in > > > > > > the future, I think that at the moment, there's a way to implement > > > > >

Hi everybody! I manage a mail server running Dovecot 2.2.21 with Pigeonhole 0.4.10. I successfully configured sieve and use it also to filter some spam messages. Here is one of the script I use to filter messages on the basis of prohibited words in message body. As you can see, the last command writes to the log the action of this script. -- the script begins ------------ require

At the moment I am using LLVM to target our proprietary SHAVE processor, but the Movidius "Myriad" chip also utilises a Sparc Leon for executive functions. For this I use the GCC compiler. This all works fine, but I would like to consolidate code generation for both targets in the same LLVM derived compiler to simplify things and I have a couple of questions about the Sparc backend

Are there any known vulnerabilities in portmap (redhat''s portmap-4.0-7b)? I''ve been receiving a lot of attempts to access the portmap port on some linuxppc machines I administer by various machines which clearly have no business with mine, and I wonder if this is an attempt to break in to my machines. I''ve searched some archives, but I haven''t yet found any

On 02/05/16 16:51, Timo Sirainen wrote: > On 02 May 2016, at 03:47, Leon Kyneur <leon at f-m.fm> wrote: >> Was excited to see that wildcards are now possible on autoexpunge in the 2.2.24 release. >> >> However I'm trying to configure these from the userdb lookup and it doesn't appear to be working. >> >> if I set in 15-mailboxes.conf >> mailbox

Hola! In case there are some mexican readers here... It is little difficult for an english speaker to find information about mexican domains. Is it possible to register a domain like "fiesta.mx"? I have seen sites selling ".com.mx" and similar but not just ".mx". Thanks, Peter

Following Situation: Having an intranet-application that needs to know the ip-Address of the clients before running. Clients anywere in the Internet with any ip-address. So I thought about using masquerading the opposite way than normal. But then anybody could use this application. Dos anybody know how to make it a little bit more secure, like proofing the mac-address of the client, or something

Hi all, I updated a Dell XPS laptop from CentOS 8.1 (1911) to 8.2 (2004). Installed kernels are kernel-4.18.0-147.5.1.el8_1.x86_64 kernel-4.18.0-147.8.1.el8_1.x86_64 kernel-4.18.0-193.6.3.el8_2.x86_64 Unfortunately I can not boot into the latest kernel-4.18.0-193.6.3.el8_2.x86_64. After grub2 screen I only see following line: EFI stub: UEFI Secure Boot is enabled Booting into the older

Hi all, We need to get better echo cancellation on an Asterisk gateway. Currently it has two TE410P (1st gen) cards. So would it be possible to just buy two VPM450M cards ? Or do we need to buy two new TE412P cards ? In that case a Sangoma A108d card would be nice as well ? What configuration gives the best audio quality ? Thanks, Leon de Rooij leon at scarlet-internet.nl

Since C8.1 kvm guests have a huge delay while booting on a kvm host based on C6. This delay was not present with C8.0. The "pause" happend direct after the grub step. The VNC session shows only a "_" character. Any ideas what changes? -- Leon

http://rgd.legalaffairs.gov.tt Test User username: izo password: izo May be a bit heavy on the graphics by I am still try to teach the graphic artist about web 2.0. :-) regards, Leon Leslie -- Never be afraid to try something new. Remember, amateurs built the ark; professionals built the Titanic! --~--~---------~--~----~------------~-------~--~----~ You received this message because you