Network Security

Richard Hubbard hubbardr at adelphia.net
Thu Dec 20 08:44:02 EST 2001 

<x-html>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 5.50.4134.600" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#fffbf0>
<DIV><SPAN class=510194113-20122001><FONT face=Arial color=#0000ff size=2>You 
may also want to check out the possibility of a BackOrifice 
infection.&nbsp;&nbsp; That would make almost all of your security steps almost 
useless.&nbsp; (In "Hacking Exposed", the authors point out that BO2K is about 
the most serious threat to your Windows 9x machines.)</FONT></SPAN></DIV>
<DIV><SPAN class=510194113-20122001><FONT face=Arial color=#0000ff 
size=2></FONT></SPAN>&nbsp;</DIV>
<DIV><SPAN class=510194113-20122001><FONT face=Arial color=#0000ff 
size=2></FONT></SPAN>&nbsp;</DIV>
<DIV><SPAN class=510194113-20122001><FONT face=Arial color=#0000ff 
size=2></FONT></SPAN>&nbsp;</DIV>
<DIV><SPAN class=510194113-20122001></SPAN><FONT face=Tahoma 
size=2>-----Original Message-----<BR><B>From:</B> owner-nflug at nflug.org 
[mailto:owner-nflug at nflug.org]<B>On Behalf Of </B>Ronald Maggio<BR><B>Sent:</B> 
Wednesday, December 19, 2001 11:59 PM<BR><B>To:</B> 
nflug at nflug.org<BR><B>Subject:</B> Re: Network Security<BR><BR></DIV></FONT>
<BLOCKQUOTE dir=ltr style="MARGIN-RIGHT: 0px">
  <DIV><FONT face=Arial size=2></FONT>&nbsp;</DIV>
  <BLOCKQUOTE dir=ltr 
  style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
    <DIV style="FONT: 10pt arial">----- Original Message ----- </DIV>
    <DIV 
    style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><B>From:</B> 
    <A title=hubbardr at adelphia.net href="mailto:hubbardr at adelphia.net">Richard 
    Hubbard</A> </DIV>
    <DIV style="FONT: 10pt arial"><B>To:</B> <A title=nflug at nflug.org 
    href="mailto:nflug at nflug.org">nflug at nflug.org</A> </DIV>
    <DIV style="FONT: 10pt arial"><B>Sent:</B> Wednesday, December 19, 2001 
    10:09 PM</DIV>
    <DIV style="FONT: 10pt arial"><B>Subject:</B> RE: Network Security</DIV>
    <DIV><BR></DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
    size=2>I'll pipe in to help out...</FONT></SPAN></DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
    size=2></FONT></SPAN>&nbsp;</DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial><FONT color=#0000ff 
    size=2>Another book (aside from Hacking Exposed)&nbsp; is "Securing and 
    Optimizing Linux Red Hat Edition - A Hands on Guide" available at <A 
    href="http://www.linuxdoc.org">http://www.linuxdoc.org</A>.&nbsp; It's free, 
    and it is a step by step to build a secure server.&nbsp; It is a little 
    dated, giving examples using rh 6.2.&nbsp; The one chapter that has been 
    definitely superceded is the chapter on ipchains, which has been replaced by 
    iptables.&nbsp; However, this still should get you pretty close to what you 
    need.&nbsp; </FONT></FONT></SPAN></DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
    size=2></FONT></SPAN>&nbsp;</DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff size=2>If 
    you're not using RedHat, then the general security measures are still a good 
    guide, you'll just need to go to your distro do get the 
    details.</FONT></SPAN></DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
    size=2></FONT></SPAN>&nbsp;</DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
    size=2>I'm dual booting with redhat 7.2 on this machine, and have dual 
    booted with Mandrake.&nbsp; (I know someone will take umbrage, but) I think 
    they are both pretty good.&nbsp; </FONT></SPAN></DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
    size=2></FONT></SPAN>&nbsp;</DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
    size=2>The ram and hard drive space should be plenty.</FONT></SPAN></DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
    size=2></FONT></SPAN>&nbsp;</DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
    size=2>Rich</FONT></SPAN></DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
    size=2></FONT></SPAN>&nbsp;</DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
    size=2>&lt;--------------------------------------------------------------snip--------------------------------------------------------------------------------&gt;</FONT></SPAN></DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
    size=2></FONT></SPAN>&nbsp;</DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial size=2>Thanks for your 
    input Rich it is appreciated. I'll look into what you've suggested and see 
    how to make my systems more secure.</FONT></SPAN></DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial size=2>I installed 
    Norton's Internet Security on my Windows Systems, but unfortunately as I was 
    installing it on more than&nbsp;one system&nbsp;I was learning more about it 
    and did not get back in time to reset the settings to make it more secure. 
    So what ended up was some ports where left open and someone attacked the 
    port over and over again untill they got entrance. I really am not 
    sure&nbsp;which port but my suspicion is SMTP cause every time I opened the 
    email client the HDD would go nutts and the mouse would jump all over the 
    screen, also the windows would jump from one to another. 
</FONT></SPAN></DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial 
    size=2></FONT></SPAN>&nbsp;</DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial size=2>I would say that 
    that sounds like a virus that got past my anitvirus software some how. Most 
    likely in a stealthly manner. Where as the anitvirus software could not 
    catch it getting on the system. Thats the problem when you have to get on 
    line I guess. </FONT></SPAN></DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial 
    size=2></FONT></SPAN>&nbsp;</DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial size=2>So 
    </FONT></SPAN><SPAN class=700320303-20122001><FONT face=Arial size=2>I 
    will&nbsp;be taking the&nbsp;</FONT></SPAN><SPAN 
    class=700320303-20122001><FONT face=Arial size=2>Network + exam in a few 
    weeks. So<SPAN class=700320303-20122001><FONT face=Arial size=2> wish me 
    luck fellas. </FONT></SPAN>
    <DIV></FONT></SPAN><SPAN class=700320303-20122001><FONT face=Arial 
    size=2>I'm also going for my Server + and MCSE. The only problem is that 
    locally I don't know of any school that teaches RHCE or LPI 
    corsework.&nbsp;Does anyone have info on this 
    matter?</FONT></SPAN></DIV></DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial 
    size=2></FONT></SPAN>&nbsp;</DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial 
    size=2>&lt;-----------------------------------------snip-------------------------------------------------------------------&gt;</FONT></SPAN></DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial 
    size=2></FONT></SPAN><SPAN class=700320303-20122001><FONT face=Arial 
    size=2></FONT></SPAN>&nbsp;</DIV>
    <DIV><SPAN class=700320303-20122001><FONT face=Arial 
    size=2><STRONG>O</STRONG></FONT></SPAN><FONT face=Tahoma size=2>iginal 
    Message-----<BR><B>From:</B> owner-nflug at nflug.org 
    [mailto:owner-nflug at nflug.org]<B>On Behalf Of </B>Ronald 
    Maggio<BR><B>Sent:</B> Wednesday, December 19, 2001 9:07 PM<BR><B>To:</B> 
    nflug at nflug.org<BR><B>Subject:</B> RE: Network Security<BR><BR></DIV></FONT>
    <BLOCKQUOTE dir=ltr style="MARGIN-RIGHT: 0px">
      <DIV><FONT face=Arial size=2>HI John</FONT></DIV>
      <DIV><FONT face=Arial size=2></FONT>&nbsp;</DIV>
      <DIV><FONT face=Arial size=2>You where talking&nbsp;&nbsp;about this 
      subject in an email or two ago.&nbsp;</FONT><FONT face=Arial 
      size=2>It&nbsp;was&nbsp;on Network Security I think a boof you have read 
      or are reading.</FONT></DIV>
      <DIV><FONT face=Arial size=2>Was it on Network Security </FONT><FONT 
      face=Arial size=2>in general ie: Linux/Unix and Windows. If so could you 
      please mention the title of this book again. I've been reading Hacking 
      Exposed second edition. (Mc Graw Hill press) ,and Hack Proofing your 
      Network Internet Tradecraft. (Syngress press) also do you know of any 
      books on Linux/Unix Security.</FONT><FONT face=Arial size=2>I've been 
      getting NetBio's hits and SMTP hits which brought down my Celeron Box, but 
      everything was backed-up anyways and my other boxes are up and running. 
      Right this vary minute I'm low level formatting the HDD's on the Celeron 
      to reinstall Win 98 SE Second Version.</FONT></DIV>
      <DIV><FONT face=Arial size=2></FONT>&nbsp;</DIV>
      <DIV><FONT face=Arial size=2>I'd like an option on the subject of 
      dual-booting a version of Linux on this 
      celeron&nbsp;box&nbsp;I&nbsp;was&nbsp;thinking&nbsp;of RedHat</FONT><FONT 
      face=Arial size=2>&nbsp;7.2 for Intel. Do you have any suggestions 
      that&nbsp;</FONT><FONT face=Arial size=2>is of </FONT><FONT face=Arial 
      size=2>another choice than RedHat&nbsp;7.2.?&nbsp;&nbsp;There are 2. 13gig 
      HDD's on the box in question,&nbsp;768mb of ram,</FONT></DIV>
      <DIV><FONT face=Arial size=2>ISA 56K modem, and all standard subsystem 
      parts\boards running on this 
box.</FONT></DIV></BLOCKQUOTE></BLOCKQUOTE></BLOCKQUOTE></BODY></HTML>
</x-html>

More information about the nflug mailing list