Firewall Config Problem in SuSE 7?
First off, I am pretty new to linux and unix in general and especially firewalls (alas i have lived most my life as a slave to windows). And this may in fact not be a question for you but for my ISP. Anyway..... I have minimal home network and ever since I was rooted after carelessness, I am pretty paranoid about security and reviewing my logs. Ever since I set up my install to do ip masq/routing I keep on seeing these 2 repeating lines from my isp's machines in /var/log/firewall : Nov 14 01:25:51 beast kernel: Packet log: output DENY eth0 PROTO=1 24.92.74.X:3 24.92.68.22:3 L=156 S=0xC0 I=31139 F=0x0000 T=255 (#3) Nov 13 18:15:16 beast kernel: Packet log: input DENY eth0 PROTO=17 24.92.68.23:67 24.92.74.X:68 L=576 S=0x00 I=8539 F=0x4000 T=248 (#52) My question is not exactly why is my firewall denying these packets, but why is "24.92.68.22 / ns2.midsouth.rr.com" and "24.92.68.23 / pc-join.midsouth.rr.com"? And what the hell is "pc-join?" It really isn't critical (I dont think anyway, since everything seems to work just fine), but this seems odd to me. I just went over /etc/rc.config.d/firewall.rc.config again carefully, but I really dont see anything that would have to do with this. I am somwhat new to this, but why would these machines need to hit me? The isp uses DHCP, but the entries are too often for that. I can send in my rc.config.firewall if needed. Thanks, -John ______ -Idiocy "Never underestimate the power of stupid people in large groups" http://www.despair.com ______
Can anyone tell me where to find the rpms for sshd, ssh? I see reference to ssh on the web site. But I cannot find sshd and ssh on my six 7.0 professional CDs anywhere, or on a web site. The Mandrake openssh-2.1.1 and ssh-1.2.2.7 sshd do not allow logins. Thanks. Brett
Hi Brett! you can install them via yast from this url: ftp://ftp.gwdg.de/pub/linux/suse/7.0/i386.de/suse/sec1/ -- michael On Tue, 14 Nov 2000, Brett Delmage wrote:
Can anyone tell me where to find the rpms for sshd, ssh?
I see reference to ssh on the web site. But I cannot find sshd and ssh on my six 7.0 professional CDs anywhere, or on a web site.
The Mandrake openssh-2.1.1 and ssh-1.2.2.7 sshd do not allow logins.
Thanks. Brett
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
On Tue, 14 Nov 2000, Michael Galloway wrote:
you can install them via yast from this url:
ftp://ftp.gwdg.de/pub/linux/suse/7.0/i386.de/suse/sec1/
Thanks Michael. That did the trick! Unless I missed it, it's not stated clearly anywhere that ssh is NOT included on the CDs (except, I guess, the European ones) because they're shipped from "land of the free" (US) ;-) Brett
sigh ... i guess you'd (and me :-P ) better go back and reinstall from roman's url since there are issues with the 7.0 rpm's. -- michael On Tue, 14 Nov 2000, Brett Delmage wrote:
On Tue, 14 Nov 2000, Michael Galloway wrote:
you can install them via yast from this url:
ftp://ftp.gwdg.de/pub/linux/suse/7.0/i386.de/suse/sec1/
Thanks Michael. That did the trick!
Unless I missed it, it's not stated clearly anywhere that ssh is NOT included on the CDs (except, I guess, the European ones) because they're shipped from "land of the free" (US) ;-)
Brett
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
If I show ignorance, or get this wrong feel free to slap me about the face with a wet fish.... Haven't the restrictions on cryptography exports been relaxed to the extent that you cannot ship to "terrorist nations". Which, if I am not mistaken does not include too many countries. Matthew On Tuesday 14 November 2000 06:34, Michael Galloway wrote:
sigh ...
i guess you'd (and me :-P ) better go back and reinstall from roman's url since there are issues with the 7.0 rpm's.
-- michael
On Tue, 14 Nov 2000, Brett Delmage wrote:
On Tue, 14 Nov 2000, Michael Galloway wrote:
you can install them via yast from this url:
ftp://ftp.gwdg.de/pub/linux/suse/7.0/i386.de/suse/sec1/
Thanks Michael. That did the trick!
Unless I missed it, it's not stated clearly anywhere that ssh is NOT included on the CDs (except, I guess, the European ones) because they're shipped from "land of the free" (US) ;-)
Brett
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
If I show ignorance, or get this wrong feel free to slap me about the face with a wet fish....
Haven't the restrictions on cryptography exports been relaxed to the extent that you cannot ship to "terrorist nations". Which, if I am not mistaken does not include too many countries.
Matthew
It's not all that easy. But I keep repeating: We're busy with that
question (or the answer, respectively). If it was possible, then you can
be absolutely sure we'd have shipped crypto software with the US
distribution, because it costs us extra work...
Roman.
--
- -
| Roman Drahtmüller
participants (5)
-
Brett Delmage
-
jpriddy
-
Matthew Johnson
-
Michael Galloway
-
Roman Drahtmueller