Network Security

Ronald Maggio r.v.maggio at worldnet.att.net
Thu Dec 20 09:18:32 EST 2001


<x-html>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 5.50.4807.2300" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#fffbf0>
<DIV><FONT face=Arial size=2></FONT>&nbsp;</DIV>
<BLOCKQUOTE dir=ltr 
style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
  <DIV style="FONT: 10pt arial">----- Original Message ----- </DIV>
  <DIV 
  style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><B>From:</B> 
  <A title=hubbardr at adelphia.net href="mailto:hubbardr at adelphia.net">Richard 
  Hubbard</A> </DIV>
  <DIV style="FONT: 10pt arial"><B>To:</B> <A title=nflug at nflug.org 
  href="mailto:nflug at nflug.org">nflug at nflug.org</A> </DIV>
  <DIV style="FONT: 10pt arial"><B>Sent:</B> Thursday, December 20, 2001 8:44 
  AM</DIV>
  <DIV style="FONT: 10pt arial"><B>Subject:</B> RE: Network Security</DIV>
  <DIV><BR></DIV>
  <DIV><SPAN class=510194113-20122001><FONT face=Arial color=#0000ff size=2>You 
  may also want to check out the possibility of a BackOrifice 
  infection.&nbsp;&nbsp; That would make almost all of your security steps 
  almost useless.&nbsp; (In "Hacking Exposed", the authors point out that BO2K 
  is about the most serious threat to your Windows 9x 
  machines.)</FONT></SPAN></DIV>
  <DIV><SPAN class=510194113-20122001><FONT face=Arial color=#0000ff 
  size=2></FONT></SPAN>&nbsp;</DIV>
  <DIV><SPAN class=510194113-20122001><FONT face=Arial size=2>I'll look into 
  that! Thanks:)</FONT></SPAN></DIV>
  <DIV><SPAN class=510194113-20122001><FONT face=Arial 
  size=2></FONT></SPAN>&nbsp;</DIV>
  <DIV><SPAN class=510194113-20122001><FONT face=Arial 
  size=2>Ron</FONT></SPAN></DIV>
  <DIV><SPAN class=510194113-20122001><FONT face=Arial color=#0000ff 
  size=2></FONT></SPAN>&nbsp;</DIV>
  <DIV><SPAN class=510194113-20122001><FONT face=Arial color=#0000ff 
  size=2></FONT></SPAN>&nbsp;</DIV>
  <DIV><SPAN class=510194113-20122001><FONT face=Arial color=#0000ff 
  size=2></FONT></SPAN>&nbsp;</DIV>
  <DIV><SPAN class=510194113-20122001></SPAN><FONT face=Tahoma 
  size=2>-----Original Message-----<BR><B>From:</B> <A 
  href="mailto:owner-nflug at nflug.org">owner-nflug at nflug.org</A> 
  [mailto:owner-nflug at nflug.org]<B>On Behalf Of </B>Ronald 
  Maggio<BR><B>Sent:</B> Wednesday, December 19, 2001 11:59 PM<BR><B>To:</B> 
  nflug at nflug.org<BR><B>Subject:</B> Re: Network Security<BR><BR></DIV></FONT>
  <BLOCKQUOTE dir=ltr style="MARGIN-RIGHT: 0px">
    <DIV><FONT face=Arial size=2></FONT>&nbsp;</DIV>
    <BLOCKQUOTE dir=ltr 
    style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
      <DIV style="FONT: 10pt arial">----- Original Message ----- </DIV>
      <DIV 
      style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><B>From:</B> 
      <A title=hubbardr at adelphia.net href="mailto:hubbardr at adelphia.net">Richard 
      Hubbard</A> </DIV>
      <DIV style="FONT: 10pt arial"><B>To:</B> <A title=nflug at nflug.org 
      href="mailto:nflug at nflug.org">nflug at nflug.org</A> </DIV>
      <DIV style="FONT: 10pt arial"><B>Sent:</B> Wednesday, December 19, 2001 
      10:09 PM</DIV>
      <DIV style="FONT: 10pt arial"><B>Subject:</B> RE: Network Security</DIV>
      <DIV><BR></DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
      size=2>I'll pipe in to help out...</FONT></SPAN></DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
      size=2></FONT></SPAN>&nbsp;</DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial><FONT color=#0000ff 
      size=2>Another book (aside from Hacking Exposed)&nbsp; is "Securing and 
      Optimizing Linux Red Hat Edition - A Hands on Guide" available at <A 
      href="http://www.linuxdoc.org">http://www.linuxdoc.org</A>.&nbsp; It's 
      free, and it is a step by step to build a secure server.&nbsp; It is a 
      little dated, giving examples using rh 6.2.&nbsp; The one chapter that has 
      been definitely superceded is the chapter on ipchains, which has been 
      replaced by iptables.&nbsp; However, this still should get you pretty 
      close to what you need.&nbsp; </FONT></FONT></SPAN></DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
      size=2></FONT></SPAN>&nbsp;</DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
      size=2>If you're not using RedHat, then the general security measures are 
      still a good guide, you'll just need to go to your distro do get the 
      details.</FONT></SPAN></DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
      size=2></FONT></SPAN>&nbsp;</DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
      size=2>I'm dual booting with redhat 7.2 on this machine, and have dual 
      booted with Mandrake.&nbsp; (I know someone will take umbrage, but) I 
      think they are both pretty good.&nbsp; </FONT></SPAN></DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
      size=2></FONT></SPAN>&nbsp;</DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
      size=2>The ram and hard drive space should be plenty.</FONT></SPAN></DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
      size=2></FONT></SPAN>&nbsp;</DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
      size=2>Rich</FONT></SPAN></DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
      size=2></FONT></SPAN>&nbsp;</DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
      size=2>&lt;--------------------------------------------------------------snip--------------------------------------------------------------------------------&gt;</FONT></SPAN></DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff 
      size=2></FONT></SPAN>&nbsp;</DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial size=2>Thanks for 
      your input Rich it is appreciated. I'll look into what you've suggested 
      and see how to make my systems more secure.</FONT></SPAN></DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial size=2>I installed 
      Norton's Internet Security on my Windows Systems, but unfortunately as I 
      was installing it on more than&nbsp;one system&nbsp;I was learning more 
      about it and did not get back in time to reset the settings to make it 
      more secure. So what ended up was some ports where left open and someone 
      attacked the port over and over again untill they got entrance. I really 
      am not sure&nbsp;which port but my suspicion is SMTP cause every time I 
      opened the email client the HDD would go nutts and the mouse would jump 
      all over the screen, also the windows would jump from one to another. 
      </FONT></SPAN></DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial 
      size=2></FONT></SPAN>&nbsp;</DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial size=2>I would say 
      that that sounds like a virus that got past my anitvirus software some 
      how. Most likely in a stealthly manner. Where as the anitvirus software 
      could not catch it getting on the system. Thats the problem when you have 
      to get on line I guess. </FONT></SPAN></DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial 
      size=2></FONT></SPAN>&nbsp;</DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial size=2>So 
      </FONT></SPAN><SPAN class=700320303-20122001><FONT face=Arial size=2>I 
      will&nbsp;be taking the&nbsp;</FONT></SPAN><SPAN 
      class=700320303-20122001><FONT face=Arial size=2>Network + exam in a few 
      weeks. So<SPAN class=700320303-20122001><FONT face=Arial size=2> wish me 
      luck fellas. </FONT></SPAN>
      <DIV></FONT></SPAN><SPAN class=700320303-20122001><FONT face=Arial 
      size=2>I'm also going for my Server + and MCSE. The only problem is that 
      locally I don't know of any school that teaches RHCE or LPI 
      corsework.&nbsp;Does anyone have info on this 
      matter?</FONT></SPAN></DIV></DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial 
      size=2></FONT></SPAN>&nbsp;</DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial 
      size=2>&lt;-----------------------------------------snip-------------------------------------------------------------------&gt;</FONT></SPAN></DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial 
      size=2></FONT></SPAN><SPAN class=700320303-20122001><FONT face=Arial 
      size=2></FONT></SPAN>&nbsp;</DIV>
      <DIV><SPAN class=700320303-20122001><FONT face=Arial 
      size=2><STRONG>O</STRONG></FONT></SPAN><FONT face=Tahoma size=2>iginal 
      Message-----<BR><B>From:</B> owner-nflug at nflug.org 
      [mailto:owner-nflug at nflug.org]<B>On Behalf Of </B>Ronald 
      Maggio<BR><B>Sent:</B> Wednesday, December 19, 2001 9:07 PM<BR><B>To:</B> 
      nflug at nflug.org<BR><B>Subject:</B> RE: Network 
      Security<BR><BR></DIV></FONT>
      <BLOCKQUOTE dir=ltr style="MARGIN-RIGHT: 0px">
        <DIV><FONT face=Arial size=2>HI John</FONT></DIV>
        <DIV><FONT face=Arial size=2></FONT>&nbsp;</DIV>
        <DIV><FONT face=Arial size=2>You where talking&nbsp;&nbsp;about this 
        subject in an email or two ago.&nbsp;</FONT><FONT face=Arial 
        size=2>It&nbsp;was&nbsp;on Network Security I think a boof you have read 
        or are reading.</FONT></DIV>
        <DIV><FONT face=Arial size=2>Was it on Network Security </FONT><FONT 
        face=Arial size=2>in general ie: Linux/Unix and Windows. If so could you 
        please mention the title of this book again. I've been reading Hacking 
        Exposed second edition. (Mc Graw Hill press) ,and Hack Proofing your 
        Network Internet Tradecraft. (Syngress press) also do you know of any 
        books on Linux/Unix Security.</FONT><FONT face=Arial size=2>I've been 
        getting NetBio's hits and SMTP hits which brought down my Celeron Box, 
        but everything was backed-up anyways and my other boxes are up and 
        running. Right this vary minute I'm low level formatting the HDD's on 
        the Celeron to reinstall Win 98 SE Second Version.</FONT></DIV>
        <DIV><FONT face=Arial size=2></FONT>&nbsp;</DIV>
        <DIV><FONT face=Arial size=2>I'd like an option on the subject of 
        dual-booting a version of Linux on this 
        celeron&nbsp;box&nbsp;I&nbsp;was&nbsp;thinking&nbsp;of 
        RedHat</FONT><FONT face=Arial size=2>&nbsp;7.2 for Intel. Do you have 
        any suggestions that&nbsp;</FONT><FONT face=Arial size=2>is of 
        </FONT><FONT face=Arial size=2>another choice than 
        RedHat&nbsp;7.2.?&nbsp;&nbsp;There are 2. 13gig HDD's on the box in 
        question,&nbsp;768mb of ram,</FONT></DIV>
        <DIV><FONT face=Arial size=2>ISA 56K modem, and all standard subsystem 
        parts\boards running on this 
  box.</FONT></DIV></BLOCKQUOTE></BLOCKQUOTE></BLOCKQUOTE></BLOCKQUOTE></BODY></HTML>
</x-html>


More information about the nflug mailing list