archives: crashed hard

From: Joey Kelly <looseduk_at_ductape.net>
Date: Tue, 18 Dec 2001 12:01:17 +0000
Message-Id: <0112181201171Q.01203@rahab>

-- 
Joey Kelly
< Minister of the Gospel | Computer Networking Consultant >
http://joeykelly.dhs.org
"When Government fears the people, it's liberty.
When people fear the Government, it's tyranny."
-- Benjamin Franklin

attached mail follows:


What type of mainboard do you need? I may have one for you unless it is
some weird special expensive kind.

And! The announcement.

First, I want to thank everyone who helped me get the domain up. It is
running flawlessly now. For those that looked at my conf file, please look
at the hosts allow option.

for those that didn't here it is

    hosts allow = 198.160.0 127.

notice the discrepency? Since I use the hidden class c network addressing,
198.168.???.??? it is impossible for me to log into a server restricted to
those addresses from anywhere except the local host.

The problem? 198.16'0'.0 <- no trailing .

Now, I am waiting patiently for the cyber kick-in-the-butt I deserve since I
manually typed that address set into that line and thereby made my life a
nightmare for a few days. I do have to say one thing about it tho. I got
to download and install the latest version of samba and a few other
utilities. Plus I learned a heck of a lot more about Samba than I had for
setting up the file server at work.

Next shall be setting up a secure ftp server.

~

----- Original Message -----
From: "Scott Harney" <scotth@scottharney.com>
To: <nolug@patientcarerx.com>
Sent: Thursday, November 15, 2001 6:31 PM
Subject: Re: [Nolug]

> Not for some time. Those archives are on a disk from a machine that
> has crashed hard. I'm waiting for a motherboard to ressurect.
> Sorry.

___________________
Nolug mailing list
nolug@nolug.org

attached mail follows:


Do you have an old "Neutron Board" for a Sun E150 or the early netra T1s.

So Yeah. it's quite esoteric. I'll probably just scare up a sun pizza box
and use this box as a scsi disk array.

good work on getting the samba server up.

What do you mean by "secure ftp" server. that's kind of an oxymoron really.
Consider ssh and it's companion scp for secure shell and file transfer
functionality (it's all encrypted)

On Thu, Nov 15, 2001 at 08:33:07PM -0600, the Professor wrote:
> What type of mainboard do you need? I may have one for you unless it is
> some weird special expensive kind.
>
> And! The announcement.
>
> First, I want to thank everyone who helped me get the domain up. It is
> running flawlessly now. For those that looked at my conf file, please look
> at the hosts allow option.
>
> for those that didn't here it is
>
> hosts allow = 198.160.0 127.
>
> notice the discrepency? Since I use the hidden class c network addressing,
> 198.168.???.??? it is impossible for me to log into a server restricted to
> those addresses from anywhere except the local host.
>
> The problem? 198.16'0'.0 <- no trailing .
>
> Now, I am waiting patiently for the cyber kick-in-the-butt I deserve since I
> manually typed that address set into that line and thereby made my life a
> nightmare for a few days. I do have to say one thing about it tho. I got
> to download and install the latest version of samba and a few other
> utilities. Plus I learned a heck of a lot more about Samba than I had for
> setting up the file server at work.
>
> Next shall be setting up a secure ftp server.
>
> ~
>
> ----- Original Message -----
> From: "Scott Harney" <scotth@scottharney.com>
> To: <nolug@patientcarerx.com>
> Sent: Thursday, November 15, 2001 6:31 PM
> Subject: Re: [Nolug]
>
>
> > Not for some time. Those archives are on a disk from a machine that
> > has crashed hard. I'm waiting for a motherboard to ressurect.
> > Sorry.
>
>
> ___________________
> Nolug mailing list
> nolug@nolug.org

-- 
Scott Harney<scotth@scottharney.com>
 PGP Key fingerprint = 6D 31 C3 00 77 8C D1 C2 59 0A 01 E3 AF 81 94 63
___________________
Nolug mailing list
nolug@nolug.org

attached mail follows:


> Do you have an old "Neutron Board" for a Sun E150 or the early netra T1s.

uhhhhh....... no. Prolly won't run into one anytime soon either.

> So Yeah. it's quite esoteric. I'll probably just scare up a sun pizza box
> and use this box as a scsi disk array.

> good work on getting the samba server up.

Thanks.

> What do you mean by "secure ftp" server. that's kind of an oxymoron
really.
> Consider ssh and it's companion scp for secure shell and file transfer
> functionality (it's all encrypted)

Well, at least as secure as it can be for setting up virtual roots for
users. Prolly use wu_ftp. I remember speaking to someone and that is the
server they suggested.

welp, off to work to see if RH7.2 came down last night. Has anyone
installed this release either as an upgrade or new install? Anything I
should know about before doing the upgrade?

~

___________________
Nolug mailing list
nolug@nolug.org

attached mail follows:


the Professor <nyghtgolem@bigplanet.com> writes:

> Well, at least as secure as it can be for setting up virtual roots for
> users. Prolly use wu_ftp. I remember speaking to someone and that is the
> server they suggested.

All ftp servers have had their problems but wu-ftp has really had
security-hole after security-hole. Consider proftpd. They seem to
have achieved a good state of security now. Config file is similar in
structure to Apache.

-- 
Scott Harney <scott_harney@yahoo.com>
Broadband Services Manager (LA)
Charter Communications
___________________
Nolug mailing list
nolug@nolug.org

attached mail follows:


>
>Well, at least as secure as it can be for setting up virtual roots for
>users. Prolly use wu_ftp. I remember speaking to someone and that is the
>server they suggested.
>
Um, I'd suggest running proftpd.

As far as secure goes, remember that ftp transmits passwords in plain text
--- therefore, don't allow anyone with a shell to use ftp. Put their logins
in /etc/ftpusers and they will be unable to ftp in, to enforce this rule. Pin
in the butt, I know, since you'll have to ftp stuff up to an alternate
homedir, then log in and copy the stuff over to your shell manually. Of
course, that goes for telnet as well... cleartext passwords go over the line,
and are easily sniffed. Using encrypted telnet (ssh) is a far better idea.

Good luck!

--Joey

___________________
Nolug mailing list
nolug@nolug.org
Received on 12/18/01

This archive was generated by hypermail 2.2.0 : 12/19/08 EST