You should've done more research before adopting that particular mail server. Be prepared for lots of patching, and don't be too surprised if the server gets compromised fairly quickly after coming online.
Use either Internet Exploder or Firefox to search Google. I hope you're not planning on using this in Windows, but then again, if you're asking that question, ... well... nevermind.
I'd be surprised if any legitimate training company actually supplied brain dumps as part of their curriculum. If you don't know enough to pass the test, either study harder or ask the instructor for help.
I wish you luck, since Cisco tests aren't known to be easy..
There's more to breaking into a webserver than following a list of "do this, then do that." If you don't know what you're doing, start hitting the books (CEH study guides, etc.) and use Google to find out what tools to use, how to use them, and most importantly, WHY you'd want to use that particular tool (or set of tools.)
If you don't know how something works, all the tools in the world won't help if you don't know what you're doing - it will just help get you labeled as a script kiddie.
Usually the application creates the .pid (Process ID) file when it starts, and the location varies with the application. Sometimes you can tell the app where to put the .pid via the app's config file, but the general default is /var/run/
"Creates indexed pdf documents from text files. Designed to aid creating an electronic distribution method for legacy system reports, since many mainframe type print spools are plain text. Allows indexing, customizing page settings, font size, font face, and super-imposing text over an image in the case of using pre-printed forms. Supports unlimited levels of indexing bookmarks in documents and system/user configuration files. Suitable for use in an intranet gateway for generating PDF documents in real-time."
You can use ipdf (not sure of the project page, but it's in the ports tree in FreeBSD.)
Here's how I use it in a bash script:
ipdf -o daily_report.pdf -m letter-p -f 11 -F Courier -s 'Daily user report from MyServer' -a 'My Name' -t 'Daily User Report' daily_report.txt
This takes the contents of a text file (daily_report.txt) and outputs it to daily_report.pdf with the various options (portrait, Courier font, ps 11, with my name as the creator, and the name of the report embedded in the "properties" info.)
Once you install it, the manpage gives quite detailed information on all the various options/switches.
Have you looked at the configure.log to see what other errors might be reported? I've never come across that one in all the years I've been running Snort. Can you paste the stdout after you type "make", or is that the only line displayed?
What directory are you in when you run ./configure?
If you're using Checkpoint, create a new VPN group, add a new user to that group, and only allow access to the specific node (machine) they need access to. You can also limit the dates/times they can connect, the protocols they can use once connected. They can use SecureClient (if you have the licenses) which you can pre-configure as a distributable package for them to install. I've never had any luck using SecureRemote, but then again, I haven't tried it since around R54-NG.
I'm curious, though, as to why you'd want to restrict them access to a single machine if they're going to be running "diagnostics" on your entire network?
I can think of a number of ways, depending on how much time and energy you want to put into the solution. If you only want to use the tools within XP, I suggest reading up on some Micro$oft KB articles on the built-in firewall (look for "exceptions").
If you're handy with some flavor of Unix/Linux, you can create a small DMZ for your guests to use, complete with a DHCP server to hand out addresses on a separate network. You can download m0n0wall or pfSense for free and use that. The options are limited only by your ability and motivation. After all, if you *really* don't want others to see your files, how far will you go to protect them?
Can you be a little more specific when you say "alerts"? What kind of alerts? What platform are you using? Alerts triggered by syslog/Windows Event entries? Are you using SNMP?
If you're talking about doing actual network monitoring, the list is quite large. My personal favorites are Nagios (www.nagios.org), OSSEC-HIDS (www.ossec.net), syslog-ng, and custom-written shell scripts.
What platforms are the systems you want to monitor? Do you have a centralized logging system already in place? What's your policy for log retention? Do you want real-time e-mail alerting or exception reporting? How do you plan to archive the alerts? Do you want a tracking system to monitor response times for all alerts sent out?
If you can provide some details, I can give you a more detailed response when it comes to what to use and how to set the whole thing up.
I think this thread has gone on far too long. It was questionable to begin with, and it's turned into "Why I can't wait to surf for pr0n until I get home from school."
If you're at school, and they don't want you surfing, give it up. In case you haven't realized it yet, everything you do at school gets LOGGED, and it's just a matter of time before you get caught. Bypassing filters/proxies isn't that difficult to begin with, so if you haven't figured it out by now, either find someone at school who knows how, or wait until you get home from school to read your MySpace/FaceBook/whatever pages.
Flames by script kiddie wannabes will be diverted to /dev/null, so save your breath..
Create a new A record (www) and give it the IP of the webserver, and create a pointer record and it should resolve fine. You might have to force a dns flush on the clients to see f it works right away.
What does the Apache error log show? Did you view the file on the server to make sure there's no "^M" characters at the end of each line? Did you try one of my earlier suggestions to make sure the server is reading the file as a text file?
One thing to keep in mind - if you bypass your company's proxy server to gain access to unauthorized websites, you may be violating your company's network/security/Internet access policy, which in some companies is grounds for termination.
Is it worth it to lose your job because you just had to check your Yahoo! mail? No.
If you can't last 8 hours at work without surfing the Net, you have a problem.
They installed WebSense for a reason - to keep people from wasting time at working surfing the Net and being non-productive. Stop spending so much time trying to bypass their filters and get back to work.
What kind of router are you using? Is it a cheapo LinkSys/D-Link/Netgear/etc or is it a more robust FIREWALL (Netopia/Cyberguard/etc.)? Do you have access controls in place? Do you allow VPN access into your network (so people can work from home)?
What KIND of data are you trying to protect? Do you fall under GLBA/SOX/HIPAA and are therefor required to meet government regulations for securing data access?
Do you have antivirus installed on all systems? What kind of spyware protection do you have? How are you preventing your inside users from downloading potentially harmful files from the Net that can initiate connections that bring in potentially unsafe content?
After reading the dig article "Kids Outsmart Web Filters" which links to a CNet News Article. I was wondering what measures you have used or know that have been used to bypass internet filters. I have the sole interest of securing internet access in my schools. Thanks guys!
I tried going through the source code for both FreeBSD and Linux, but really didn't find a way to go. Perhaps this would be a great question to pose to each the Linux and FreeBSD kernel developers' Network mailing lists?
You'd want to use the 'alias' command with ifconfig, as described in the FreeBSD Handbook. You set this in /etc/rc.conf
You can't. To sniff it would mean that someone else has the username/password, and you would sniff it out of the network traffic to the router. Since you don't KNOW what it is, you can't sniff it. You'll probably have to reset the router, then reset your username/password, and restore the backup of the config that you saved when you configured the router. You did backup the settings, right? :)
That's an odd request. You can use a proxy or a number of different mechanisms for preventing users from downloading files, but why limit the downloaded file to 2MB?
If you're trying to understand security, I'd suggest you start reading a number of publications and articles to get you started.
If you allow traffic out on TCP 443, here's one way of bypassing your proxy. I've been doing this for awhile now. Of course, it's just a matter of finding out which ports are blocked from the inside and finding one that's open in the event 443 is closed, but you get the idea.
I could also do ARP spoofing, IP spoofing, or a number of different things to get around it, depending on how you've implemented it.
So what exactly is the problem? If you know all of this, which you claim, there isn't a problem. I've asked you repeatedly for information on your NIC, but rather than answer my questions, you just make comments about how much you already know, then continue to ask for help.
This wreaks of Trolling, so I'm going to ignore this thread as of now. I've given you sufficient resources to find the answer to your question, which has nothing to do with the original thread issue, so you should be able to work this out for yourself.
Am I being rude? Probably. But then, re-read this entire thread, especially YOUR OWN POSTS, and you just might see what me and others see. I'm done wasting my time with someone who claims to know the answers to the questions he's asking, then continues to ask for help but doesn't provide answers to questions being asked of people who try to help.
My suggestions for you: -Stop being a damn Troll. -It's OK if you don't know something. That's what this place is all about. -If someone offers help, don't try to boast about what you supposedly already know - answer their questions and you might even learn something. -Proofread your postings so they don't sound like blathering drivel. Spell out complete words and form cohesive sentences, and you will be understood. This isn't IRC so forget the l33t h4x0r stuff. Contrary to popular belief, …
Here's a HOWTO I wrote for a DHCP server on FreeBSD. Read it and see how the server gets configured (this is only 1 way of many different ways to configure a DHCP server.)
I highly recommend bookmarking the Linux Documentation Project website for HOWTOs on networking, audio, drivers, etc. It will save you a lot of time and frustration if you learn how things work.
the thing is how would it pick up my DHCP, with out a domain.. its rediculous cause i cant skip that one prompt. its a standard PCI eth card. No other distros ahd problems with it.. Slack is not working right with audio either. umm.
DHCP uses the MAC address for leases, NOT a domain. It can also be configured to use hostnames to assign the IP leases, such as MCHSI, but in situations like those, if the MAC address doesn't match the lease, you get a new IP, or you get nothing (depending on their TOS.)
Since you're already behind a NetGear router, the NetGear is receiving a DHCP lease from your provider - not your Linux box. Your router is assigning your local LAN IP addresses, regardless of what hostname.domain the box is configured for.
I have OptOnline cable, using a FreeBSD firewall/router, which is also a DHCP/DNS server for one of my internal subnets. I can plug ANY machine into that subnet, turn it on, configure it to use DHCP, and it'll get an address, regardless of what the hostname or domain that box is already configured for.
Ill explain the problem a little more to help. Ok when i reun the set up and install stackware 10.0 it asks to configure the OS, and the set up. Now for network it asked for the slot it is located in. PCE, COM etc. I had no clue, then I boot up. I run netconfig and it asks for a domain. I dont have a domain. How else would i run the DHCP? I know how to set up config's with suse, linspire, knoppix, but for some reason this one has me stumped, and your not babbling. lol (=.
1. What NIC do you have in the box? 2. If you run DHCP on a *real* DHCP server, you don't NEED a domain, since that's part of what gets provided by the DHCP server. If you don't know what to put there, just make something up, but WITHOUT the .tld (Top Level Domain - .com, .net, .org, etc.) 3. That's the beautiful part about Slack - you have to know what you're doing when it comes to core networking. It will help you out just so much, but it's expected that the admin know a bit about protocols, networking, and general *nix admin stuff.
i coudl barly say im cross posting, first of i was awnsering your questions.
I was reffering to your other post about the networking issue that you responded to in this thread.
Im not going to list everything i know and dont know.
Nor did I ask you to. When I offered a solution, your comment was "I already know all that." Makes it difficult for people trying to help you out if we don't know exactly what it is you're asking/looking for.
See i know how to solve this problem.
OK, then you obviously don't need my help with it. Sorry to have wasted your time with my blathering.
Sorry to be rude, im jsut upset by that rude post of your's.
I wasn't being rude. I was asking you to provide more information regarding your question in order for me to help you find the problem and recommend a solution. But, like you so pointedly made clear earlier, you already know how to fix it, so I won't waste any more of your time.
The locate command doesn't rewrite anything - it just tells you where xxx is located.
Try doing updatedb, followed by locate xxx to see where it is (like, /usr/local/bin or /usr/sbin or whatever the path is) and maybe at that location to yoru $PATH if it isn't already there.
Boot to your Linux distro and run lilo. Lilo will rewrite the mbr to include the lilo boot menu screen that got overwritten when you reinstalled Windoze.
...provided you use lilo and not grub or some other boot manager...
Ok i boot up slackware, now it doesnt seem to have an DHCP program to locate all my config etc.
A DHCP client is installed by default - it's dhclient. If you mean it doesn't locate your DHCP server, have you configured your NetGear box to be a DHCP server?
Im dual booting linux (slack 10) i put the set up disk in to configure the connection etc.
What setup disk? Configure what connection? Under Slack, all you need is "netconfig" to configure your basic network settings, including using DHCP.
I run of a modem connected to a netgear to my PC.
Actually, you use a Network Interface Card (NIC), not a modem, unless you mean a cable modem connected to a NetGear router, which your machine connects to via a NIC.
Now when it says pick device theres a list of devices (claiming to be PCI names. Now i dont know what the numbers represent. Im figuring that each one names the order they are in. Now how can i figure which ones which, so i can have it find my ethernet card.)
umm... HUH?
If there is another way to do all this please inform me if you have the time. I googles around, and i searched this database. Im not finding much on the topic.
The easiest way (again) is by using "netconfig" to configure your basic network settings.
I suggest including more details in your posts so we can figure out (better understand) …
It would help if you replied to the correct post, instead of cross-posting.
Since I don't know your level of experience with Linux, it's a little difficult for me to guess what you don't know/already know.
What *exactly* is the problem? If you're receiving an error, please post it here so we can figure out what's happening. If you can't post it, can you provide any additional details about the problem that may better help us understand what's happening?
Run (as root) "netconfig" and set eth0 to use DHCP. I have no idea what you mean regarding using a setup disk for your NetGear device, but if it's a router, just use DHCP for Linux until you learn more about how the networking stuff works.
It doesn't automatically bring your network interface online? What's the error?
What window manager are you using? KDE? Gnome? Blackbox? WindowMaker?
All the networking stuff can be done via "netconfig" as far as specifying the IP, netmask, name servers, etc.
Also try (as root) "ifconfig eth0 up" (no quotes) and see if that does anything. You might want to check your dmesg to make sure your NIC is recognized, or if there are any issues with it (can't load driver, etc.).
If you do "ifconfig" all by itself it will display the current network configuration for all available (up) NICs.
