Search results for query: *

First, the SEARCH line you included looks suspiciously like a worm or virus test. Nothing to worry too much about since your server gave a 401, except if the "calling" computer is an internal one. Second, mail routing through secondary MXs is a well-used spammer trick. When you say "mail is...

If you took down your smtpd, that means you do not need the mail daemon for some time. So you can perform a quick test : change your DNS MX record and remove your server there (I suppose "your server" is the computer getting SYNFlooded; and, of course, I suppose you have secondary MXs...

If you want to check/restrict web surfing, you will be better off using filtering proxies (squidguard, dansguardian and such). Otherwise, you could easily spend half your life running after IP changes.

You can recompile your kernel with SYN cookies activated. It will help you manage the Syn flood without problems (but it will do nothing against another kind of DOS, for example bandwidth-oriented). But are you sure it's a SYN Flood DOS ?

One way to do that would be to set up a local mailbox server, which will get its mail feed from your 3rd party vendor's system (fetchmail comes to mind). Or, which would be better IMO, define/setup your own primary MX server, the third party being only secondary MX. Then add something like...

I beg to disagree. You NEED to block zip files (and a helluva lot others). That way, when the next zip virus strikes, you will not be vulnerable while waiting for you AV vendor to update its virus signature database. And this is why, too.

OpenSSL is probably your friend there.

Yes, maybe. And then, maybe not. Given the fact that LOTS of DNS servers are improperly configured, SPF configuration will undoubtedly suffer (and if you think "it will make them admins properly configure their servers", think again). Then, with forwarding, relaying, adress changes and such...

You should be concerned. Really. Even with dynamic IPs, on the average a connected computer is scanned once per 5 to 10 minutes. And it takes only a few seconds to install a backdoor or trojan on a laptop. Once the laptop will get back to your network, this will mean the insider will be inside...

Just set up an HTTP proxy (Squid comes to mind), require that ALL outgoing HTTP go through the proxy (easy : configure your Internet router to reject any outgoin TCP/80 and such if they are not coming from the proxy) and analyze the proxy logs regularly. If you want to be able to pinpoint users...

There are seevral things wrong, in both schemes. Proxying SqlNet is... well, let's say if you have a proper filtering proxy for SqlNet, you _are_ Oracle. Otherwise, your reverse proxy will do nothing more than packet filtering. Useless, since FW2 (which could be a proper filtering router) will...

That could also come from timeouts with your navigator/http proxy/ISP and such. Especially since it occurs quite often when doing searches (since the web server needs to perform the search, it does not answer as quickly, and the timeout triggers).

True, but incomplete. If you have another file in xinetd.d that starts telnetd on another port, someone could still telnet to your computer. It's nice, but not enough, to drop telnetd file from xinetd.d (or comment it out from xinetd.conf file). You must to the same for all services you do not...

There are a hell of a lot of things to do. To name a few of them : no temp files; wipe any memory that could hold secrets, as soon as you do not need it anymore (wipe = WIPE IT, not just free it); prevent any swapping of memory pages that could hold secrets; choose a proper random source, with...

[I'm using Linux, not Windows] If I prevent the OS boot, the drive still ejects any tape I try to insert (and I have already removed all screws from the drive, since my first one got hit by the infamous left-rear screw problem). Does this mean something is broken in the drive ?

I hate to say such a thing, but "me too, me too". Since last monday, no tape will load, I have exactly the same symptom as you. So, anyone has an answer ? Should the drive be repaired or changed ? Tia, -- Dl