Re: Whole net of scriptkiddiez and wannabes

To: andreas palsson <did@algonet.se>
Cc: debian-user@lists.debian.org
Subject: Re: Whole net of scriptkiddiez and wannabes
From: Oswald Buddenhagen <ob6@inf.tu-dresden.de>
Date: Sun, 14 May 2000 20:40:52 +0200 (CEST)
Message-id: <[🔎] Pine.LNX.4.21.0005142033430.10482-100000@ugly.wh8.tu-dresden.de>
In-reply-to: <[🔎] 391EF108.36A07127@algonet.se>

> I think I can secure my box quite good with SSH, ipchains and disabling
> most of the inetd-services.
i'm right now hacking sifi to make it even better than it is now. sifi is
a lot better than ipchains (it is statefull). 
ssh should be safe, so far.
disabling unneeded inet services is always a good idea.

> But what about 'sniffers'?
bad thing.

> I have no experience in sniffers and even if my SSH is protected, my
> mail and IRC-client connections are not encrypted.
i don't know anything about irc security. :-(

> When Exim is connecting to another host to deliver mail, can they see
> the contents of the connection?
yes, they can.
my soultion: i use ssh to forward ports to a trusted net with a mail
server. from there i can fetchmail and send to it.

well - my icq, www, ftp and everything else goes through the untrusted
net, but who cares?
sensitive web servers offer ssl and remote logins can be serverd with
ssh. the rest is not _that_ important, i think.

-- 
Hi! I'm a .signature virus! Copy me into your ~/.signature, please!
--
If Windows is the answer, I want the problems back!

Reply to:

Follow-Ups:
- Re: Whole net of scriptkiddiez and wannabes
  - From: MH <a8402538@unet.univie.ac.at>

References:
- Whole net of scriptkiddiez and wannabes
  - From: andreas palsson <did@algonet.se>

Prev by Date: Re: Whole net of scriptkiddiez and wannabes
Next by Date: Setting up X
Previous by thread: Re: Whole net of scriptkiddiez and wannabes
Next by thread: Re: Whole net of scriptkiddiez and wannabes
Index(es):
- Date
- Thread