| |
| |
| |
|
Page: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17
Comments:
<0> if you want to get a rough estimate, emerge -e world | wc
<0> that's +/- 10 packages
<0> errr
<1> its hanging
<0> emerge -ep world | wc
<0> lol, sorry
<2> not really
<1> smurfy smurfy # emerge -ep world | wc
<1> 429 1807 19853
<2> that would take forever
<1> which numbers are which
<2> too lazy to rewrite it
<0> 429 lines
<0> so figured ~420 packages
<1> wc -l = lines
<1> thats all i know
<1> hmm
<1> yeah 2700
<2> http://haxor.me.uk/matja/wma/installed.packageshttp://haxor.me.uk/matja/wma/installed.packages
<1> would take forever
<2> http://haxor.me.uk/matja/wma/installed.packages
<2> grumk
<2> l
<0> lol, 666 packages...
<2> http://haxor.me.uk/matja/wma/gentoo.jpg <---thats a gentoo
<2> my gentoo
<2> dead meanwhile :(((
<2> my good old small little pucky schnucki gentoo
<2> http://haxor.me.uk/matja/wma/desktop-menu-apps.avi <--my livedvd :)
<2> see, you guys dont have a gentoo (not even a dead one)
<1> hahahah as buggy as x64 may be, id rather run this **** than windows anyday
<3> nice
<0> x86_64 for gentoo isn't that buggy in my experience
<1> nah its not
<1> just a couple things
<0> but I've only run it on servers :-P
<1> overall its vert solid
<1> oh on servers its solid as a rock
<2> rocks arent solid
<1> ive never had any issues on my servers
<1> and administration is a breeze thanks to portage
<3> i dont think i will have to start all over.. ima acually try to save my self this time
<1> Je|2o: you dont have too, just recompile all the ****
<3> ffmpeg installed after i changed that option to O2
<1> another thing, we have like 10 windows servers at work
<1> and EVERY TIME a ****ing update comes out
<1> it demands you reboot
<1> wtf
<3> first night i had a windows server up it got hacked haha
<1> well we are forced to run it, because of proprietary software we use
<1> everything else is handled by a dual gentoo cluster
<1> running heartbeat
<2> Je|2o, patch and secure it before attaching it to the net maybe?
<1> and nagios, id die without nagios
<1> Je|2o: put the box behind a firewall
<1> only allowed outbound access
<1> to microsoft
<1> then update the trash
<2> hmm you wont update alot allwoing only outbound
<1> sure you will
<1> outbound + nat
<2> no you wont
<2> so?
<2> inbound traffic might be handy for actuall retrieving data?
<1> the firewall only should block unsolicited inbound traffic
<2> thats what you call statefull, and *any* firewall can do that
<2> :)
<1> if its requested by the box its fine
<2> :)
<2> thats the kind of spirt
<2> :)
<1> i dont even allow that on my network at work
<1> ive caught midnight employees surfing porn , all kinds of ****
<1> so now i have my super ultra nazi inbound/outbound policy at the router
<1> ROFL
<1> i thought about putting them all through a proxy and monitoring access
<1> but i prefer the drop all and add as needed approach
<4> gentooyay: i did that. what an incredible h***le
<1> h***le, but very secure
<1> or were you talking about the proxy
<2> dd if=/dev/zero of=nt4_drive.c.image bs=1G count=2
<2> dd: memory exhausted
<4> i've relaxed it now. i don't care if people surf porn.
<2> cute :)
<4> gentooyay: i did both
<1> well i have groups
<1> we have about 200 exployess in the call center
<4> too much work maintaining
<2> gentoo, and how is your great policy helping you if someone makes and dns tunnel for example?
<2> :)
<1> those are grouped
<1> and totally denied
<4> especially when people need to be able to play games
<2> if ppl need games you deploy vpns :)
<1> yeah right, those ****ers will download and do all kinds of ****
<1> spyware
<1> worms
<1> viruses
<4> i enforce trend micro officescan. that's good enough.
<2> i usually dig an icmp/dns tunnel if i see some lame network admin around :)
<1> and sadly they do it without knowing it
<1> outbound icmp is dropped for them too
<1> lol
<2> but not dns
<1> dns is internal
<5> httptunnel <3
<2> ya, so what?
<2> internal dns -> dns tunnel server -> finished
<1> it forwards outbound only if its an approved ip
<4> point with such a firewall isn't to deny people access, it's to deny trojans the ability to call home
<2> no its not
<4> for me it is
<2> point of firewall is for raffic shaping :)
<2> traffic
<1> yes exactly, if i get a worm that tries to scan the internet, its dead in the water on my network
<4> that has nothing to do with firewalling
<1> limited to its subnet
<4> shaping is another issue
<2> gentooyay, no is not
<5> dead in the water on my network too. i use IPX
<2> a smart drone will dig its way out
<1> sure it is
<2> how can you stop a dns tunnel?
<1> unless it can determine the mac address of a trusted box
<2> ofc it can
<1> and change its ip accordingly
<2> but doesnt need to
<6> hm im curious what exactly is a dns tunnel server ? :p
<1> ive never seen a worm that advanced
<1> im not saying it cant be done
<2> those "worms" cannot be seen
<1> but thats pretty advanced
<2> phatbot phantom mod
<2> for example
<3> so to recompile every thing what flags i use for emerge world?
<1> ok it infects a box
<1> that is limited in a subnet
<2> net-misc/nstx
<1> whats it gonna do
<2> IP over DNS tunnel
<2> also cute
<2> its gonna dig a tunnel over dns
<2> for example
<1> outbound dns is denied for the host it has infected
<2> its to the internal dns
<1> how is your tunnel gonna go out
<2> the internal dns -> asks domain hack.me
<5> evildog: you create a domain/subdomain which points to an NS record with its own IP address, you run a special nameserver on that IP which receives/sends DNS records with a low TTL
<1> nope it is denied, by the internal server
<5> a recursive nameserver inside a lan will forward the requests to the real nameserver
<2> you internal server does not communicate with others=
Return to
#gentoo
or
Go to some related
logs:
#politics
#computers
#politics
#computers
#stocks
missisipie river
#csharp
#firebird
#nhl
#computers
|
|
