Network Security
Ronald Maggio
r.v.maggio at worldnet.att.net
Thu Dec 20 09:18:32 EST 2001
<x-html>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 5.50.4807.2300" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#fffbf0>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<BLOCKQUOTE dir=ltr
style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
<DIV style="FONT: 10pt arial">----- Original Message ----- </DIV>
<DIV
style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><B>From:</B>
<A title=hubbardr at adelphia.net href="mailto:hubbardr at adelphia.net">Richard
Hubbard</A> </DIV>
<DIV style="FONT: 10pt arial"><B>To:</B> <A title=nflug at nflug.org
href="mailto:nflug at nflug.org">nflug at nflug.org</A> </DIV>
<DIV style="FONT: 10pt arial"><B>Sent:</B> Thursday, December 20, 2001 8:44
AM</DIV>
<DIV style="FONT: 10pt arial"><B>Subject:</B> RE: Network Security</DIV>
<DIV><BR></DIV>
<DIV><SPAN class=510194113-20122001><FONT face=Arial color=#0000ff size=2>You
may also want to check out the possibility of a BackOrifice
infection. That would make almost all of your security steps
almost useless. (In "Hacking Exposed", the authors point out that BO2K
is about the most serious threat to your Windows 9x
machines.)</FONT></SPAN></DIV>
<DIV><SPAN class=510194113-20122001><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=510194113-20122001><FONT face=Arial size=2>I'll look into
that! Thanks:)</FONT></SPAN></DIV>
<DIV><SPAN class=510194113-20122001><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=510194113-20122001><FONT face=Arial
size=2>Ron</FONT></SPAN></DIV>
<DIV><SPAN class=510194113-20122001><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=510194113-20122001><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=510194113-20122001><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=510194113-20122001></SPAN><FONT face=Tahoma
size=2>-----Original Message-----<BR><B>From:</B> <A
href="mailto:owner-nflug at nflug.org">owner-nflug at nflug.org</A>
[mailto:owner-nflug at nflug.org]<B>On Behalf Of </B>Ronald
Maggio<BR><B>Sent:</B> Wednesday, December 19, 2001 11:59 PM<BR><B>To:</B>
nflug at nflug.org<BR><B>Subject:</B> Re: Network Security<BR><BR></DIV></FONT>
<BLOCKQUOTE dir=ltr style="MARGIN-RIGHT: 0px">
<DIV><FONT face=Arial size=2></FONT> </DIV>
<BLOCKQUOTE dir=ltr
style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
<DIV style="FONT: 10pt arial">----- Original Message ----- </DIV>
<DIV
style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><B>From:</B>
<A title=hubbardr at adelphia.net href="mailto:hubbardr at adelphia.net">Richard
Hubbard</A> </DIV>
<DIV style="FONT: 10pt arial"><B>To:</B> <A title=nflug at nflug.org
href="mailto:nflug at nflug.org">nflug at nflug.org</A> </DIV>
<DIV style="FONT: 10pt arial"><B>Sent:</B> Wednesday, December 19, 2001
10:09 PM</DIV>
<DIV style="FONT: 10pt arial"><B>Subject:</B> RE: Network Security</DIV>
<DIV><BR></DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff
size=2>I'll pipe in to help out...</FONT></SPAN></DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial><FONT color=#0000ff
size=2>Another book (aside from Hacking Exposed) is "Securing and
Optimizing Linux Red Hat Edition - A Hands on Guide" available at <A
href="http://www.linuxdoc.org">http://www.linuxdoc.org</A>. It's
free, and it is a step by step to build a secure server. It is a
little dated, giving examples using rh 6.2. The one chapter that has
been definitely superceded is the chapter on ipchains, which has been
replaced by iptables. However, this still should get you pretty
close to what you need. </FONT></FONT></SPAN></DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff
size=2>If you're not using RedHat, then the general security measures are
still a good guide, you'll just need to go to your distro do get the
details.</FONT></SPAN></DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff
size=2>I'm dual booting with redhat 7.2 on this machine, and have dual
booted with Mandrake. (I know someone will take umbrage, but) I
think they are both pretty good. </FONT></SPAN></DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff
size=2>The ram and hard drive space should be plenty.</FONT></SPAN></DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff
size=2>Rich</FONT></SPAN></DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff
size=2><--------------------------------------------------------------snip--------------------------------------------------------------------------------></FONT></SPAN></DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial size=2>Thanks for
your input Rich it is appreciated. I'll look into what you've suggested
and see how to make my systems more secure.</FONT></SPAN></DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial size=2>I installed
Norton's Internet Security on my Windows Systems, but unfortunately as I
was installing it on more than one system I was learning more
about it and did not get back in time to reset the settings to make it
more secure. So what ended up was some ports where left open and someone
attacked the port over and over again untill they got entrance. I really
am not sure which port but my suspicion is SMTP cause every time I
opened the email client the HDD would go nutts and the mouse would jump
all over the screen, also the windows would jump from one to another.
</FONT></SPAN></DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial size=2>I would say
that that sounds like a virus that got past my anitvirus software some
how. Most likely in a stealthly manner. Where as the anitvirus software
could not catch it getting on the system. Thats the problem when you have
to get on line I guess. </FONT></SPAN></DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial size=2>So
</FONT></SPAN><SPAN class=700320303-20122001><FONT face=Arial size=2>I
will be taking the </FONT></SPAN><SPAN
class=700320303-20122001><FONT face=Arial size=2>Network + exam in a few
weeks. So<SPAN class=700320303-20122001><FONT face=Arial size=2> wish me
luck fellas. </FONT></SPAN>
<DIV></FONT></SPAN><SPAN class=700320303-20122001><FONT face=Arial
size=2>I'm also going for my Server + and MCSE. The only problem is that
locally I don't know of any school that teaches RHCE or LPI
corsework. Does anyone have info on this
matter?</FONT></SPAN></DIV></DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial
size=2><-----------------------------------------snip-------------------------------------------------------------------></FONT></SPAN></DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial
size=2></FONT></SPAN><SPAN class=700320303-20122001><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=700320303-20122001><FONT face=Arial
size=2><STRONG>O</STRONG></FONT></SPAN><FONT face=Tahoma size=2>iginal
Message-----<BR><B>From:</B> owner-nflug at nflug.org
[mailto:owner-nflug at nflug.org]<B>On Behalf Of </B>Ronald
Maggio<BR><B>Sent:</B> Wednesday, December 19, 2001 9:07 PM<BR><B>To:</B>
nflug at nflug.org<BR><B>Subject:</B> RE: Network
Security<BR><BR></DIV></FONT>
<BLOCKQUOTE dir=ltr style="MARGIN-RIGHT: 0px">
<DIV><FONT face=Arial size=2>HI John</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>You where talking about this
subject in an email or two ago. </FONT><FONT face=Arial
size=2>It was on Network Security I think a boof you have read
or are reading.</FONT></DIV>
<DIV><FONT face=Arial size=2>Was it on Network Security </FONT><FONT
face=Arial size=2>in general ie: Linux/Unix and Windows. If so could you
please mention the title of this book again. I've been reading Hacking
Exposed second edition. (Mc Graw Hill press) ,and Hack Proofing your
Network Internet Tradecraft. (Syngress press) also do you know of any
books on Linux/Unix Security.</FONT><FONT face=Arial size=2>I've been
getting NetBio's hits and SMTP hits which brought down my Celeron Box,
but everything was backed-up anyways and my other boxes are up and
running. Right this vary minute I'm low level formatting the HDD's on
the Celeron to reinstall Win 98 SE Second Version.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>I'd like an option on the subject of
dual-booting a version of Linux on this
celeron box I was thinking of
RedHat</FONT><FONT face=Arial size=2> 7.2 for Intel. Do you have
any suggestions that </FONT><FONT face=Arial size=2>is of
</FONT><FONT face=Arial size=2>another choice than
RedHat 7.2.? There are 2. 13gig HDD's on the box in
question, 768mb of ram,</FONT></DIV>
<DIV><FONT face=Arial size=2>ISA 56K modem, and all standard subsystem
parts\boards running on this
box.</FONT></DIV></BLOCKQUOTE></BLOCKQUOTE></BLOCKQUOTE></BLOCKQUOTE></BODY></HTML>
</x-html>
More information about the nflug
mailing list