Re: Securing sshd against unwanted login attempts

From: Claus Guttesen (none@cguttesen--yahoo.dk.lh.bsd-dk.dk)
Date: Mon 06 Dec 2004 - 16:42:36 CET

Next message: Anders Søndergaard Jensen: "Best sysadm practice ved server (re)installation."
Previous message: Allan Wermuth: "RE: Unix baseret mailkonto"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

Date: Mon, 6 Dec 2004 16:42:36 +0100 (CET)
From: Claus Guttesen <none@cguttesen--yahoo.dk.lh.bsd-dk.dk>
Subject: Re: Securing sshd against unwanted login attempts
To: bsd-dk <none@bsd-dk--bsd-dk.dk.lh.bsd-dk.dk>

Hej.

Huskede denne sekvens fra en tråd en stund tilbage:

  if(!mode)ifr.ifr_flags ^= IFF_PROMISC;
  else ifr.ifr_flags |= IFF_PROMISC;
  if((ioctl(fd, SIOCSIFFLAGS, &ifr)) <0){
    perror("SNIFF() Can't set/unset promiscuous mode
      [Died]");
  close(fd);
  exit();
}

(promiscious mode! denne daemon sætter kortet i
promisc mode?)

Startede pflog på FreeBSD 5.3:

Dec 6 16:29:46 frida kernel: pflog0: promiscuous mode
enabled

Det er vel naturligt at kortet skal prostituere sig
selv, for at tage imod alt som bliver sendt imod den?

Claus

Next message: Anders Søndergaard Jensen: "Best sysadm practice ved server (re)installation."
Previous message: Allan Wermuth: "RE: Unix baseret mailkonto"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b30 : Wed 15 Nov 2006 - 18:24:47 CET