Re: [SLE] searching for good WINDOWS security list
From A_Johnson-SuseML-e to suse-security@suse.com, suse-linux-e@suse.com,...:
PS I know I can set up my linux box to sniff at my windows box... how would I do a thing like that. I was hoping to have a direct link from the WIN to the LINUX for the task...what do I use on the linux box? nmap? I read about that someplace...any other tools? Thaanks... I kinda like 'ethereal'. Not only does it sniff traffic on your local ethernet, but it does a great job of parsing and explaining it as well. It runs under 'X'. One note, a catch-22 I found. In order to put the interface into promiscuous mode, it has to run as root. But since root doesn't 'own' the X server, it couldn't open a window! Somebody finally told me about sux - it works like su, but also allows root to run X applications.
-- Rick Green "I have the heart of a little child, and the brain of a genius. ... and I keep them in a jar under my bed"
Hi Rick,
One note, a catch-22 I found. In order to put the interface into promiscuous mode, it has to run as root. But since root doesn't 'own' the X server, it couldn't open a window! Somebody finally told me about sux - it works like su, but also allows root to run X applications.
possibly you could also do xhost +localhost in usermode, and export DISPLAY=localhost:0 in root mode, or even open an ssh session using the -X switch ;) best regards, -- %%%%%% ( ö ö .) ----oOOo--(_)-oOOo-------------------------------------------- Klaus Sausen [developer] confession: gnu/linux page : http://deepblur.org ---------------Ooooo------------------------------------------ ooooO ( ) ( ) ) / \ ( (_/ \_)
On Sun, Jun 03, 2001 at 11:32 +0200, deepblur wrote:
[ how to start an X app as root ]
possibly you could also do xhost +localhost in usermode,
^^^^^^^^^^^^^^^^
and export DISPLAY=localhost:0 in root mode, or even open an ssh session using the -X switch
Is this a security list here? :-/ Why not just read the accompanying X doc or even simpler search the SDB which has an article on this very subject? Of all the alternatives xhost(1) is the one that sucks most. And one should understand that X forwarding is not always appropriate (read: has its security issues if you don't trust all the involved machines). virtually yours 82D1 9B9C 01DC 4FB4 D7B4 61BE 3F49 4F77 72DE DA76 Gerhard Sittig true | mail -s "get gpg key" Gerhard.Sittig@gmx.net -- If you don't understand or are scared by any of the above ask your parents or an adult to help you.
Hi !! does any one know the protocols or the ports that use: iMesh Napster Ms- Messager ICQ I need URGENT to block all of this software on the network
participants (4)
-
deepblur -
Gerhard Sittig -
Linux - User -
Rick Green