New Member

[Robert Dege]

Good call John.  I forgot all about Mandrake `Shield of Steel`.    Briefly
reading through this, it's amazing how they go from zero -> paranoid.  And
the jumps they take between levels are amazing.

I almost want to install this rpm on my Redhat system just to sift through
& see everything that they do.  I'd consider this a good learning base for
locking down console/IP intrusion.

Thanks for the link.

-Rob

> I had a similar problem trying to set up my Samba and other functions with the
> browser.  I then used msec to lower my security level (selected during the
> initial install) and everything worked.  MSEC uses some funky Mandrake specific
> way to lock up everything.  I had it set to around 4 I think (recommended for
> server) and I had to lower it way down to like 2 I think, or maybe 1 (whatever
> was recommended for workstation).  From there you can configure and go back or
> read more about msec in the Mandrake Tech Manual
> http://www.linux-mandrake.com/en/doc/81/en/ref.html/prog-msec.html
> Hope this helps a little...
>
> If dropping sec way down lets you in then at least you know why it's not
> working..  it's a place to start.
>
> JJN
> --- Chin Khee Tan <ck571 at yahoo.com> wrote:
> > I checked the http daemon. Webmin still didn't work whether the httpd was
> > running or not.
> >
> > Where would I change the ping request denials for my firewall settings to
> > allow other machines to see my Linux box?
> >
> > Thanks for the replies, Rob.
> >
> >
> >
> > ----- Original Message -----
> > From: "Robert Dege" <rdege at cse.Buffalo.EDU>
> > To: <nflug at nflug.org>
> > Sent: Tuesday, December 18, 2001 2:16 PM
> > Subject: Re: New Member
> >
> >
> > >
> > > > Problem1:
> > > > I installed webmin to work as a web interface for my Samba
> > configuration,
> > > > through port 10000, but when I fired it up, it says that the connection
> > is
> > > > broken. I tried it with SWAT, through port 901, and it says that the tcp
> > > > port 901 is not connected. I checked out the /etc/services file, and
> > swat
> > > > tcp/901 was there. I went into the xinetd file and did the changes
> > necessary
> > > > to make it work. It didn't. I went into the smb.conf file and configured
> > it
> > > > from there. But I'm just curious as to what could be the cause of this
> > > > situation.
> > >
> > > Did you check to make sure that your httpd daemon is running?
> > >
> > >
> > > > Problem2:
> > > > I am able to ping out of my Linux box, but can't ping in. I think it
> > could
> > > > be a firewall problem. When I configured the firewall through netconf -
> > > > Server Tasks - Internet Services - Internet Firewall and Masquerade -
> > > > Internet - Advanced, the 'Deny ping requests' and 'Deny Traceroute
> > requests'
> > > > boxes are always checked. Everytime I unchecked them, they would still
> > go
> > > > back to the default checked. I'm assuming there is a bug right there,
> > that's
> > > > preventing the other computers to 'see' my Linux machine.
> > >
> > > I believe that Mandrake 8.1 is running the 2.4.x kernel.  So you can
> > > execute the command (at the prompt) and it will give you the exact
> > > firewall rules that are being used:
> > >
> > > /sbin/iptables -nL
> > >
> > > you must be root.
> > >
> > >
> > > Dege
> > >
> > > Inside some of us is a thin person struggling to get out, but
> > > they can usually be sedated with a few pieces of chocolate cake.
> >
> >
> > _________________________________________________________
> > Do You Yahoo!?
> > Get your free @yahoo.com address at http://mail.yahoo.com
> >
>
>
> __________________________________________________
> Do You Yahoo!?
> Check out Yahoo! Shopping and Yahoo! Auctions for all of
> your unique holiday gifts! Buy at http://shopping.yahoo.com
> or bid at http://auctions.yahoo.com
>



Dege

Inside some of us is a thin person struggling to get out, but
they can usually be sedated with a few pieces of chocolate cake.