| |
| |
| |
|
Page: 1 2 3 4 5 6
Comments:
<0> plus if you want to cut off a user's access, you need to change the root p***word and everyone needs to be told the new p***word
<0> I still say you should be able to configure sudo to use a separate p***word than the users' use for logins
<0> :(
<1> and ignores all the extra security controls that you already have to restrict user perms
<1> ya can setup special groups like wheel and admin for special situations
<2> you guys are right. but like i said, in my special case i would need such a config
<2> i figured it with ssh, works now.
<1> why not learn how to admin a *nix box the way they were designed to be used instead of reinventing the wheel?
<0> what is this special case, btw?
<2> now all is left: how can i deny ANY tty* logins ?
<2> 0-7
<3> vi /etc.hosts.deny
<1> Tajust edit those lines out of inttab file
<3> err
<0> any logins? even root?
<2> yes
<0> what do you do if ssh dies?
<2> even root
<1> dont run getty's on them
<2> reboot the box ;p
<0> tell me why you're doing this
<1> "It seemed like a good idea at the time." probably...
<4> hence my earlier questions
<4> and the response "<2> bad luck"
<1> it's all back***ward... but wgaf? he'll learn eventually...mebbe...one day...
<2> sbin/getty 38400 tty1-7
<2> if i just kill those
<2> any negative side-effects to the box?
<1> taktak: yeah... no consoles to login with
<1> taktak: man inittab
<4> this moron isnt getting traffic on 443 to his web server,so he has the bright idea to call his isp
<4> so i talk to him and his server has a socket error - he clears that and it works, he calls it "smoke covering the real issue"
<4> wtf?
<1> Derek: depends what he's smoking i guess...
<4> lol yea
<5> hm
<5> anyone experiencing problems with sending attachments on thunderbird+gmail?
<4> whats the error?
<5> the recipient gets .dat files
<4> e
<4> w
<4> your composing in thunderbird and they receive in thunderbird as well right?
<4> and what is the file extension?
<6> hi
<6> ?how do i get eth1 to forward to eth0
<6> clients connect to box on eth1, box connects to external firewall on eth0
<7> nagual: gmail sends the .dat files iirc, but the gmail webclient doesn't show them :)
<8> slak_: iptables FORWARD
<6> phobia can you help me out?
<8> I just did...
<6> an example maybe?
<8> there are zillions of them out there, google it
<8> too involved to walk you through it here
<6> most of them cover NAT
<6> and that throws me off
<6> cos in my case everything is on the same internal network
<8> use firestarter then if you have a GUI on the box
<6> i dont
<6> so
<6> the clients
<6> will be configured to use the ip of the nic that connects to the switch as their gateway?
<6> or the ip of the nic that connects to my pix firewall
<9> good afternoon all!
<8> how's life Ilf8?
<9> ok
<9> just waking up
<8> heh
<8> I slept until like 1PM today
<9> I was hitting the sleep mode of my clock for hours
<8> haha
<4> after about an hour and half of hitting sleep every 8 mins i finally just turn it off :\
<9> yeah I can only remember hitting it about 4 or 5 times
<9> tho it started going off at like 9:30
<9> =P
<9> I had a starwars audiobook going too
<9> some of the starwars ones are pretty decent most **** tho
<9> the stories on the last 2 I listened to were bad but they were like fullon audio productions
<9> panning, different people playing chars background noises etc...
<9> pretty neat
<9> freakin undernet you get people doing global messages all the time
<5> Tsunami: so you think its gmail?
<7> i've seen it before, iirc
<9> slak_, whatya asking about?
<6> I have a linux box between my pix firewall and my clients
<6> i need the linux box to accept connectiosn on the client side and forward them to the pix
<6> pix does the NAT
<9> ah not gonna helpya but why do you have a linux box inbetween?
<9> s/in/in /
<10> slak_: if the linux box doesn't need to route, just setup an ethernet bridge on the linux box
<6> pix (192.168.2.254) <----> (192.168.2.253) linux (192.168.2.252) <-----> lan 192.168.2.0
<6> thats how i have it
<6> pfloyd: the linux box will do things like rewrite port 80 requests from clients to port 3128 (squid)
<9> better yet just plug the linux box into the switch or hub that the clients are connected to
<6> no
<8> thats broken
<9> oh I gotcha
<9> sorry my xchat scrolly kept that off the page
<6> im doing this because the pix device cant do some of the advanced routing things
<6> like rewrite my transperant proxy stuff
<6> etc
<9> I'm surprised the cisco can't do that
<6> cisco router can, this is a firewall devicde
<6> the pix i mean
<9> I'm not up on their products just googled it before to see what it was
<9> http://www.cyberciti.biz/tips/linux-setup-transparent-proxy-squid-howto.html <- dunno haven't tried it but this sounds like it might be useful
<9> I usually use obsd for my fw stuff so I doubt I'd be much help toya
<8> pf > *
<5> ipf > *
<9> I agree pf > *
<9> ipf second =P
<8> actually I take it back, winxp firewall FTW! :P
<5> so can you set up ftp through nat with pf these days?
<5> or is it still only active
<9> ftps worked for a while now
<5> i havent used bsd for...3-4 years now i think
<5> i think i installed 3. something in fbsd
<9> the problem with ftp is rarely on the firewall its almost always on your retarded friends routers setup
<5> and openbsd
<5> hm.
<5> 2.8 maybe
<5> iLLf8d: i dont have any retarded friends.
<9> I have alot of friends who can't connect to **** cause of their firewalls
<9> nagual, you're not part of any usersgroups anywhere?
<9> nagual, usually they're full ofem
<8> user groups... I went to a LUG meeting one time
<8> an install party
<8> in like 1996
<9> I've got a few friends who are self proclaimed security gurus and enterprise level coders (not that I know if they are or not) who can't seem to do simple things like dcc a file or connect to active ftp
<8> I'd never been so immersed in virginity before in my life, and never have been since ;)
<5> iLLf8d: to me the word friend is pretty strong.
<9> yeah I guess you're right
<9> I don't really consider them friends
<5> anyways, im going to bed now
<5> nighty night
<8> later nagual
<4> latrah
<4> -r
<8> +rwx
<9> they're more acquaintances
<9> gnight nagual
<8> I don't have any friends anymore
<9> heh
<8> the three or four people I considered to be friends all live too far away
<8> we never see each other -shrug-
<9> where do you live phobia?
<8> ontario canada
<9> ah
<9> whats up there?
<4> i take trips up around that area alot
Return to
#debian
or
Go to some related
logs:
#firebird
#firebird
#politics
#heroin
#computers
christiano_rona.html
#beginner
eljam3a q8
#gentoo
can't ping vm bridged gsx
|
|