Posts by )BIG"B"Affleck

Really, thats why the Tek....(maven, doubt that) name is pasted all over the linux forum.

No insult intended, you will just need a different knowledge set to talk about actual system security. If you have this knowledge and are just holding back, then the question is "why?" if you don't have it, you add no value to the conversation in your current state.

It really bugs me when people try to spin someone making an objective statement about their level of knowledge as an insult, but whatever makes you feel better about the situation I guess. I merely ask that you try and take what I say at face value.

*benefit of the doubt*
How do you feel that Linux's access control system compares to NT's? Do you have any thoughts on how these differences may vary as systems get more and more distributed with concepts like ASP and whatnot?
It is my belief that Linux's lack of both modular and centralized granularity of not only access controls but privileges as well will continually force security controls further and further away from the security kernel itself leading to a lower level of assurance across the enterprise resulting in a greater chance of inside compromise and a greater reliance on secure applications. All though this may make specific aspects of development and administration simpler, such that different admins can be responsible for different applications and development is simpler as fewer centralized security restrictions are in place. (Confused yet?)
The only correction I can see to this situation is the removal of the concept of "root" in Linux and the addition of more Harrison, Ruzzo, Ullman influenced access controls allowing greater control of specific resources while ensuring those rights are not propagated beyond their original design.
Now obviously if the Linux security model is followed application bugs will be even more critical than the currently are. I for one feel this is a bad situation as explained above. Naturally the migration to centralized trusted operating systems as access control servers would be ideal, but this would tend to be an impractical and unjustified expense for most organizations.

I'd love to hear your thoughts on the subject.

(your 50 character post)Oh yeah, pls dont answer a question with a question again! It makes you look like you don't know what your talking about. :lol:

Is this a required class for your school?
If your taking the class because need or want the knowledge, I would suggest slackware on your system.

PM for the tutorial on slakware written entirley by gore.

If you want to talk about which system is more secure in the hands of an Knownot (untrained ), than yes. OpenBSD is king and NT is the worst OS ever.

Secondly, I don't understand the point of your post. Are you saying that Mandrake Linux is better then Windows and OpenBSD? I understand your views about 'secure by default' but I disagree.

More chirping!
Yeah, you disagree but you fail to post any facts. Basically its all unsupported, unsubstantiated claims ect .ect... Which fails to suprise me! Allow me to continue.

When setting up a real world system, we lock down everything that we don't need, and try to secure everything else.

Seriously, pick up a book an OS security theory, the lot of you... it'll make for more interesting conversations.

. If everything is secure by default, this makes life much easier.

Still talking default security and application level bugs?

*cries*

Why does no one ever talk about actual system security, always with the default installs or application level bugs. Who cares? I mean honestly.

There is no truth or deeper understanding to be had talking about how a product's default configuration or what buffer wasn't checked. For some reason there is never any discussion of the actual security mechanisms. The types of access controls, audit trails, etc, etc....

Default configurations are a dead horse that never had anything to offer in the first place, seriously, . Does it really matter if a system by default has 0 full compromisable exploits or 1 or 3,000? All that matters is if the system can be configured in a manner offering sufficient assurances as justified by your threats and asset values.

Sounds like an uneducated user to me..
People, don't talk about things you don't know.

Thats what now Im telling you.

I'm fed up with all these shit Linux distros giving me 20 text editors and 30 GUIs. Whats the problem with Linux - its not the power - or the speed. Its that there is to much of everything.

Shit hard to configure.

RTFM ....

man man

....ect,ect......

Soon after you start posting fact behind your now, unsubstantiaded claims.
I will explain to the masses why
"more secure by default" actually results in a less scure real world system" until then let that saturate.

Well what are you going to be using it for?
I dont think it has the apt -get feature and I heard about some problems with the booting. Thats why I ask what is the need of it? What are you using now and are you wanting to take that learning curve?

1st of all(opinion) Do we really need more comments made by people who fail to read the information in question and my post, which was so kindly and clearly provided to them?

2nd of all(opinion) Do we really need more people just chirping in with unsupported, unsubstantiated opinions and claims?

Confused yet it doesn't take much?

Let me help you out here you probably became confused.
I speak of default configurations. I can't recall how many times I've come across "X is already hardened, so it is more secure." Operating systems like OpenBSD and Windows 2003 both fine examples of tribute to this fallacy. BIG"B"Affleck can & will demonstrate to NJWnews you and the readers of this thread that more secure by default actually results in a less secure real world system. How is that for facts shmacts?

Want me to continue?

I currently have a Gateway Desktop with 120 Gig Hard Disk! I was wondering, what server software should I put on this computer. Windows 2000 Server or a Linux Server. The reason I need a server is for my 2 domains. I currently host DCDJ.net with another server and dcwdservices.com is parked. If you could please help me by telling me which software to install, that would be great. By the way, if you think Linux is better, tell me a place where I can put it on a disk and It will boot from the CD disk drive. Thanks. My email is admin@dcdj.net.

Nick

Let a Microsoft user interrupt here.
Ok, you want to know which is better I guessing here you mean security wise.
Lets take a look at OpenBSD and Mandrake
OpenBSD for example offers no additional security functionality over Mandrake Linux, but people think it is more secure because it ships with a more secure configuration. My arguemnt is that after setting up a real world system, the Mandrake one will have greater implementation assurances and consequently will be more secure for the same efforts than the OpenBSD one.
"the 'secure by default' system cant be blamed the first time some knownot configures his web server wrong on his box and gets rooted."
There is an internet full of documents on locking systems down, there are virtually none on how to open up a hardened system in a secure manner. Are they a knownot, or are they doing the best they can (at a more difficult task) in absence of good/any information?

(no comments were directed towards anyone)

Yes you can, cause i did it.. Use Acronis Partition Expert, it resizes without a reboot, but you must specifiy a drive letter(s) for your new partition. ENJOY:cool:

Supported operating systems:

Windows 95 / 98 / Me / NT (including Server) / 2000 (including Server and Advanced Server) / XP / 2003 Server.

After installation Acronis PartitionExpert 2003 lets you create a bootable diskette or CD to create or restore disk image on a computer with any operating system.

Um, yeah its tech related look at the printer in the background. I would show my paris hilton collection but I might get banned for the 5th time.

)BIG"B"Affleck.....Why would you want to stop posting of HJT logs.?..these are necessary if we are to help solve certain problems, and having 2 different logs in the same thread (piggybacking) is very confusing.

I was just making a joke. I thought it would be a good idea to piggyback the same logs over and over again in the same thread that way you wouldnt have to go in every other thread on daniweb. And on top of that if you posted a sticky: where you say post all of the same old logs over and over you would get the longest thread award. You would win that contest see Im looking out for you not trying to stop the help.
PS: SpyBot search and destroy does the same thing without sorting through loggs.
http://www.webattack.com/get/spybot.html

Not to discredit those here who help with these logs ,I said it before and I'll say it again,the best place for help with hijack logs is the hikackthis fourm ,more people there who know how to completly get rid of spyware ..Click on this link .

Yeah that wouldnt be a bad idea

( Anger ) At people who skimmed through High school ( cheaters) not knowing what the hell they were doing in Algebra's.
(cheaters) Only bring down this society(usa)
Now I understand why my older brother (educated in 15+ maths ...ect) never gave me help in math except, his old hand written high school notes.
People who cheat down the road get to a point where they dont know what they are doing and f**k up things in the real world.
I show no pitty on these people.

(side note) If your using M E your a loser
(suggestion) If your updating to M$ XP your about to shill out

• $ 99.00 XP Home
• $ 189.00 XP Pro Upgrade
  
• If you want to take a learning curve & gain OS's for free
  www.LinuxISO.org
  

The old saying comes in my mind " If you cant run with the big dogs stay on the porch "
And How much ram does juan have?

(suggestion) www.BLKviper.com
Disable uneeded services

It's a CWS hijacker,

Please Download hijackthis

Unzip, doubleclick HijackThis.exe, and hit "Scan".

After the scan has finished the "scan" button will turn into a "save log" button

save the log file and paste it here

Do not delete anything yet, as most things hijackthis finds are harmless and needed.

steam

Looks like steamwiz opened up pandora's box of the hijackthis logs. :lol:
(suggestion)Maybe this wildfire could have been stopped by piggybacking threads.

and it is recommended that you do this from within the RedHat installation, as opposed to using Partition Magic to do this. If you do it yourself, create the /swap partition FIRST, and make sure to create it at the END of the logical drive.

Well its been years since I have dual-booted windows/RH.
During most installations *nix will ask you at the begining if you want to

• Install over existing partitions
• 
  
• Install on available partitioned space.

Partition magic gives you choices on which type of space is needed. Choose the one for *nix. It will ask you if the partitioned space is for NT or *nix atleast the full version does.

(suggestion)That way its all cut and dry and you wont get all confused with

• primary partition
• 
  
• extended partitions
• logical
• cyclinders
• blah blah blah...

So I would suggest for a new *nix user to either create the partitions inside of windows during install or with a partition tool.

(suggestion)System Repair

(suggestion) Spring cleaning in the winter.
Physical - Air duster (CPU fan/Heat Sink)
Software related - Update system Update all scanners and scan,run a safe reg cleaner,clear temps,clear cookies, clear history, defrag,disk check,reboot & repair (If needed).

I realize this is an old post but I have a similar question. In RedHat, what and where can I set a cron job up to run a *.sh script - specifically, my database backup script shown above.

sh name the script.sh

If the script has exe perms do

./name the script.sh

Examples how to set cron:
http://www.webmasters-central.com/t/cron.shtml

sh #!/bin/sh
 
date=`date '+%m-%d-%y'`
mysqldump -u database_username -pdatabase_password database_name > ~/mysql_backup/database_name.$date.sh