[SLE] Test for hacker attack weakness on your PC....
Checks your PC against hacker attack while you are connected to the web... http://www.grc.com/default.htm -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
Quoting Jerry L Kreps <jlkreps@navix.net>:
Checks your PC against hacker attack while you are connected to the web...
This only works if there is not a proxy/firewall between you and it. My ISP has a caching proxy for HTTP. An older version of this site allowed you to enter an IP address. Now it scans my ISP's proxy, not a good way to keep friends. Jeffrey -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
"Jeffrey L. Taylor" wrote:
Quoting Jerry L Kreps <jlkreps@navix.net>:
Checks your PC against hacker attack while you are connected to the web...
This only works if there is not a proxy/firewall between you and it. My ISP has a caching proxy for HTTP. An older version of this site allowed you to enter an IP address. Now it scans my ISP's proxy, not a good way to keep friends.
Jeffrey
And, it recognizes that fact when it tried to scan SMTP and other ports, and tells the user so. That's what it did on my ADSL Cisco 675 ADSL router connected to my ISP. JLK -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
The funny thing is: I protected my Linux-box so well, it doesn't even know it's there! It says: 'There is absolutely NO EVIDENCE AT ALL that there is a computer onnected at this IP address!' One big hurray for ipchains! Rogier Jerry L Kreps wrote:
"Jeffrey L. Taylor" wrote:
Quoting Jerry L Kreps <jlkreps@navix.net>:
Checks your PC against hacker attack while you are connected to the web...
This only works if there is not a proxy/firewall between you and it. My ISP has a caching proxy for HTTP. An older version of this site allowed you to enter an IP address. Now it scans my ISP's proxy, not a good way to keep friends.
Jeffrey
And, it recognizes that fact when it tried to scan SMTP and other ports, and tells the user so. That's what it did on my ADSL Cisco 675 ADSL router connected to my ISP. JLK
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
Ditto's! And my installation is straight out of the box, unmodified! JLK Rogier Maas wrote:
The funny thing is: I protected my Linux-box so well, it doesn't even know it's there! It says:
'There is absolutely NO EVIDENCE AT ALL that there is a computer onnected at this IP address!'
One big hurray for ipchains!
Rogier
Jerry L Kreps wrote:
"Jeffrey L. Taylor" wrote:
Quoting Jerry L Kreps <jlkreps@navix.net>:
Checks your PC against hacker attack while you are connected to the web...
This only works if there is not a proxy/firewall between you and it. My ISP has a caching proxy for HTTP. An older version of this site allowed you to enter an IP address. Now it scans my ISP's proxy, not a good way to keep friends.
Jeffrey
And, it recognizes that fact when it tried to scan SMTP and other ports, and tells the user so. That's what it did on my ADSL Cisco 675 ADSL router connected to my ISP. JLK
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
Jerry L Kreps wrote:
Checks your PC against hacker attack while you are connected to the web...
Thanks for the tip. I have finally achieved "stealth" mode, except for port 80 (can't help that). For a guy that's paranoid about Windows vulnerabilities, I'm mildly surprised his web server OS is NT. At least he wrote his own httpd. -- George Toft http://gtoft.dynip.com -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
George Toft wrote:
Jerry L Kreps wrote:
Checks your PC against hacker attack while you are connected to the web...
Thanks for the tip. I have finally achieved "stealth" mode, except for port 80 (can't help that).
For a guy that's paranoid about Windows vulnerabilities, I'm mildly surprised his web server OS is NT. At least he wrote his own httpd. -- George Toft http://gtoft.dynip.com
via netcraft: www.grc.com is running Steve's own HTTPD on NT4 or Windows 98 hmm, I honestly dont know, what to say.... -- pons@gmx.li http://neptune.spaceports.com/~pons/ -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
pons wrote:
George Toft wrote:
Jerry L Kreps wrote:
Checks your PC against hacker attack while you are connected to the web...
Thanks for the tip. I have finally achieved "stealth" mode, except for port 80 (can't help that).
For a guy that's paranoid about Windows vulnerabilities, I'm mildly surprised his web server OS is NT. At least he wrote his own httpd. -- George Toft http://gtoft.dynip.com
via netcraft: www.grc.com is running Steve's own HTTPD on NT4 or Windows 98
hmm, I honestly dont know, what to say....
mmmm.... I have a paranoid thought - maybe he isn't returning a true evaluation and is really looking for a way to 'legally' probe known Linux machines so he can evaluate was to block Linux machines from Windows driven sites. ??? JLK -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
Jerry L Kreps wrote:
pons wrote:
George Toft wrote:
Jerry L Kreps wrote:
Checks your PC against hacker attack while you are connected to the web...
Thanks for the tip. I have finally achieved "stealth" mode, except for port 80 (can't help that).
For a guy that's paranoid about Windows vulnerabilities, I'm mildly surprised his web server OS is NT. At least he wrote his own httpd. -- George Toft http://gtoft.dynip.com
via netcraft: www.grc.com is running Steve's own HTTPD on NT4 or Windows 98
hmm, I honestly dont know, what to say....
mmmm.... I have a paranoid thought - maybe he isn't returning a true evaluation and is really looking for a way to 'legally' probe known Linux machines so he can evaluate was to block Linux machines from Windows driven sites. ??? JLK
my thoughts exactly
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
On Fri, 26 Nov 1999, bleury wrote:
Jerry L Kreps wrote:
pons wrote:
George Toft wrote:
Jerry L Kreps wrote:
Checks your PC against hacker attack while you are connected to the web...
Thanks for the tip. I have finally achieved "stealth" mode, except for port 80 (can't help that).
For a guy that's paranoid about Windows vulnerabilities, I'm mildly surprised his web server OS is NT. At least he wrote his own httpd. -- George Toft http://gtoft.dynip.com
via netcraft: www.grc.com is running Steve's own HTTPD on NT4 or Windows 98
hmm, I honestly dont know, what to say....
mmmm.... I have a paranoid thought - maybe he isn't returning a true evaluation and is really looking for a way to 'legally' probe known Linux machines so he can evaluate was to block Linux machines from Windows driven sites. ??? JLK
my thoughts exactly
My ISP's support list had a nice time with this site. Weirdly, nobody received anything less than reassuring about the status of their security. Oddly, this was with a variety of OS's, Apple, Microsoft, FreeBSD, Linux, all passed with flying colors. Some were, in fact, aware of holes that they had on systems which this site reported as secure. -- Ed Craig epcraig@efn.org Taxi Linux FreeBSD Think this through with me, let me know your mind... Hunter/Garcia -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
Jerry L Kreps wrote:
mmmm.... I have a paranoid thought - maybe he isn't returning a true evaluation and is really looking for a way to 'legally' probe known Linux machines so he can evaluate was to block Linux machines from Windows driven sites. ??? JLK
If he wanted to block linux machines, isn't their a http variable HTTP_USER_AGENT that he could just test for and drop the connection? He might be testing various port attacks against different kernels and ports. If that is the case, he is doing us all a favor by exposing our weaknesses. That allows patches to be developed to correct the security hole. "Whatever don't kill you, makes you stronger" -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
On Fri, 26 Nov 1999, zentara wrote:
"Whatever don't kill you, makes you stronger"
"...Unless it leaves you in a coma for the next twenty years." :) -- Gregory Conron gconron@hfx.andara.com - email (902) 443-4562 - voicemail -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
zentara wrote:
Jerry L Kreps wrote:
mmmm.... I have a paranoid thought - maybe he isn't returning a true evaluation and is really looking for a way to 'legally' probe known Linux machines so he can evaluate was to block Linux machines from Windows driven sites. ??? JLK
If he wanted to block linux machines, isn't their a http variable HTTP_USER_AGENT that he could just test for and drop the connection?
Memory - what a terrible thing to lose. Of course, your right.
He might be testing various port attacks against different kernels and ports. If that is the case, he is doing us all a favor by exposing our weaknesses. That allows patches to be developed to correct the security hole.
"Whatever don't kill you, makes you stronger"
I donno, A doctor gave me and my son Hepitites B - It nearly killed him and didn't make either of us stronger, just increased our risk for liver cancer on down the road. (How? He used glass syinges and platinum needles and was using an alcohol lamp to 'sterilize' the needle. Forgot all about the material aspirated into the neck of the syringe. I wouldn't have known this except that a nurse that worked for him was a former student of mine and she told me. The 'doc' lost his license.) JLK -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
Jerry L Kreps wrote:
zentara wrote
"Whatever don't kill you, makes you stronger"
I donno, A doctor gave me and my son Hepitites B - It nearly killed him and didn't make either of us stronger, just increased our risk for liver cancer on down the road. (How? He used glass syinges and platinum needles and was using an alcohol lamp to 'sterilize' the needle. Forgot all about the material aspirated into the neck of the syringe. I wouldn't have known this except that a nurse that worked for him was a former student of mine and she told me. The 'doc' lost his license.) JLK
Sorry for bringing up the bad memory. I had a similar thing happen to me. Got laid up with jaundice for 8 weeks, I couldn't even get off the couch. Yellow eyes, black piss, etc. It altered my life. I have become who I am today because of it. I can't breathe fumes anymore, get choked up from all sorts of smells. BUT it has made me face my mortality, realize I'm a spirit in a body, not a body alone. So I am stronger for it. I may not live as long as I might have, but it taught my soul a great lesson. I have lost my fear of death. So stronger dosn't nessarily mean "physically stronger"; it is "strength of soul", which is all you "take with you when you go". Most people think I'm pretty weird. :-) -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
zentara wrote:
Jerry L Kreps wrote:
zentara wrote
"Whatever don't kill you, makes you stronger"
I donno, A doctor gave me and my son Hepitites B - It nearly killed him and didn't make either of us stronger, just increased our risk for liver cancer on down the road. (How? He used glass syinges and platinum needles and was using an alcohol lamp to 'sterilize' the needle. Forgot all about the material aspirated into the neck of the syringe. I wouldn't have known this except that a nurse that worked for him was a former student of mine and she told me. The 'doc' lost his license.) JLK
Sorry for bringing up the bad memory. I had a similar thing happen to me. Got laid up with jaundice for 8 weeks, I couldn't even get off the couch. Yellow eyes, black piss, etc. It altered my life. I have become who I am today because of it. I can't breathe fumes anymore, get choked up from all sorts of smells. BUT it has made me face my mortality, realize I'm a spirit in a body, not a body alone. So I am stronger for it. I may not live as long as I might have, but it taught my soul a great lesson. I have lost my fear of death. So stronger dosn't nessarily mean "physically stronger"; it is "strength of soul", which is all you "take with you when you go".
Most people think I'm pretty weird. :-)
Not at all. I agree with you exactly. Back in the late 60's I was doing anti-cancer research at ACU in Abilene, TX. I found out later that most of the chemicals I was using had carcenogenic effects with 20-30 year half-lives. Most of my cohorts at the time have already died of cancers that are attributable to the chemicals we used - like Ortho-nitro-phenyl analnine, malaic anhydride, and a whole range of aromtic amino acid analogs. I have a private pilot license and have been in situations beyond my control that led me to state "I'm dead" as the incidences unfolded. Then there are the two commerical aircraft malfunctions, one in which a 727 had systems A hydrolic failure. Strange they call it 'Systems A', since there is no 'Systems B' on a 727 for dropping flaps and wheels. That was an interesting three hour flight over Kansas City while we burned up fuel and they lined the runway with firetrucks. A lot of people on that aircraft found religion that day, at least till after the successful emergency landing. I feel fortunate to be alive today and as I always say, "Every day above ground is a good day". My time wil come at God's good pleasure, until then I am enjoying His creating and creatures. JLK -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
Guys, Could you continue this conversation elsewhere? This is a tiny bit off-topic. Thanks, Rogier zentara wrote:
Jerry L Kreps wrote:
zentara wrote
"Whatever don't kill you, makes you stronger"
I donno, A doctor gave me and my son Hepitites B - It nearly killed him and didn't make either of us stronger, just increased our risk for liver
Sorry for bringing up the bad memory. I had a similar thing happen to me. Got laid up with jaundice for 8 weeks, I couldn't even get off the
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
Jerry L Kreps wrote:
pons wrote:
George Toft wrote:
Jerry L Kreps wrote:
Checks your PC against hacker attack while you are connected to the web...
Thanks for the tip. I have finally achieved "stealth" mode, except for port 80 (can't help that).
For a guy that's paranoid about Windows vulnerabilities, I'm mildly surprised his web server OS is NT. At least he wrote his own httpd. -- George Toft http://gtoft.dynip.com
via netcraft: www.grc.com is running Steve's own HTTPD on NT4 or Windows 98
hmm, I honestly dont know, what to say....
mmmm.... I have a paranoid thought - maybe he isn't returning a true evaluation and is really looking for a way to 'legally' probe known Linux machines so he can evaluate was to block Linux machines from Windows driven sites. ??? JLK
I doubt it - I know of his work from 11 years ago. He wrote disk sectoring program that would speed up hard drives (SpinRite). He's probably got more talent than half of Redmond's Empire. -- George Toft http://gtoft.dynip.com -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
George Toft wrote:
Jerry L Kreps wrote:
pons wrote:
George Toft wrote:
Jerry L Kreps wrote:
Checks your PC against hacker attack while you are connected to the web...
Thanks for the tip. I have finally achieved "stealth" mode, except for port 80 (can't help that).
For a guy that's paranoid about Windows vulnerabilities, I'm mildly surprised his web server OS is NT. At least he wrote his own httpd. -- George Toft http://gtoft.dynip.com
via netcraft: www.grc.com is running Steve's own HTTPD on NT4 or Windows 98
hmm, I honestly dont know, what to say....
mmmm.... I have a paranoid thought - maybe he isn't returning a true evaluation and is really looking for a way to 'legally' probe known Linux machines so he can evaluate was to block Linux machines from Windows driven sites. ??? JLK
I doubt it - I know of his work from 11 years ago. He wrote disk sectoring program that would speed up hard drives (SpinRite). He's probably got more talent than half of Redmond's Empire. -- George Toft http://gtoft.dynip.com
Wow! Now that you mention it I remember SpinRite. Didn't it actually just create a faster buffer? JLK -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
Jerry L Kreps wrote:
George Toft wrote:
Jerry L Kreps wrote:
pons wrote:
George Toft wrote:
Jerry L Kreps wrote:
Checks your PC against hacker attack while you are connected to the web...
Thanks for the tip. I have finally achieved "stealth" mode, except for port 80 (can't help that).
For a guy that's paranoid about Windows vulnerabilities, I'm mildly surprised his web server OS is NT. At least he wrote his own httpd. -- George Toft http://gtoft.dynip.com
via netcraft: www.grc.com is running Steve's own HTTPD on NT4 or Windows 98
hmm, I honestly dont know, what to say....
mmmm.... I have a paranoid thought - maybe he isn't returning a true evaluation and is really looking for a way to 'legally' probe known Linux machines so he can evaluate was to block Linux machines from Windows driven sites. ??? JLK
I doubt it - I know of his work from 11 years ago. He wrote disk sectoring program that would speed up hard drives (SpinRite). He's probably got more talent than half of Redmond's Empire. -- George Toft http://gtoft.dynip.com
Wow! Now that you mention it I remember SpinRite. Didn't it actually just create a faster buffer?
No. Back in the dark ages, when sector order was important, he wrote SpinRite which analyzed the hard drive and set up the interleave to be the most efficient in a non-destructive fashion. This was a function that was normally performed in BIOS, using DEBUG (g=c800, or some such command), and it reformatted your drive. IDE drives made this program obsolete, but that was SpinRite and SpinRite 2. I don't know what SpinRite 5 does. -- George Toft http://gtoft.dynip.com -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
after using the test, here is what I have when running netstat -a: tcp 0 0 1Cust112.tn:netbios-ssn shieldsup.grc.com:4464 SYN_RECV Can someone explain to me why there seems to be some link to grc's website?!!!? Jerry L Kreps wrote:
Checks your PC against hacker attack while you are connected to the web...
http://www.grc.com/default.htm
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
jfondow wrote:
after using the test, here is what I have when running netstat -a:
tcp 0 0 1Cust112.tn:netbios-ssn shieldsup.grc.com:4464 SYN_RECV
Can someone explain to me why there seems to be some link to grc's website?!!!?
tcp 0 0 x.x.x.2:1717 mail.navix.net:pop3 TIME_WAIT tcp 1 0 x.x.x.2:1716 Turing.suse.de:www CLOSE_WAIT tcp 1 0 x.x.x.2:1715 Turing.suse.de:www CLOSE_WAIT tcp 1 0 x.x.x.2:1714 Turing.suse.de:www CLOSE_WAIT tcp 1 0 x.x.x.2:1713 Turing.suse.de:www CLOSE_WAIT tcp 53 0 x.x.x.2:1554 iac5.navix.net:nntp CLOSE_WAIT Why is Turning.suse.de.ww show up when I do a netstat -a? It's the last site I visited before I checked my email. JLK
Jerry L Kreps wrote:
Checks your PC against hacker attack while you are connected to the web...
http://www.grc.com/default.htm
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
hi, there was a cool diagram of socket states in tcp/ip illustrated volume I :) Turing.suse.de:80 happened to be in CLOSE_WAIT what i think it means FIN packet was sent, waiting FIN|ACK to close the connection. bye, -alexm On Sat, 27 Nov 1999, Jerry L Kreps wrote:
tcp 0 0 x.x.x.2:1717 mail.navix.net:pop3 TIME_WAIT tcp 1 0 x.x.x.2:1716 Turing.suse.de:www CLOSE_WAIT tcp 1 0 x.x.x.2:1715 Turing.suse.de:www CLOSE_WAIT tcp 1 0 x.x.x.2:1714 Turing.suse.de:www CLOSE_WAIT tcp 1 0 x.x.x.2:1713 Turing.suse.de:www CLOSE_WAIT tcp 53 0 x.x.x.2:1554 iac5.navix.net:nntp CLOSE_WAIT
Why is Turning.suse.de.ww show up when I do a netstat -a? It's the last site I visited before I checked my email. JLK
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
participants (11)
-
alexm@pycckue.org -
epcraig@efn.org -
gconron@hfx.andara.com -
grtoft@yahoo.com -
icarus@guldennet.nl -
imagicra@azstarnet.com -
jeff@elendil.bearhouse.org -
jfondow@sprintmail.com -
jlkreps@navix.net -
pons@gmx.li -
zentara@gnat.net