Okay, here's the setup. 2 computers (one suse, one windows xp) connected via a router to the internet connection I can ping the windows box fine, but I can't seem to connect to it using smbclient. If I try to use smbclient -L POMMYMOMMY, I get a "failed to connect" If I do it via the IP, it gives me a time out. I have a folder set up to share. Doing anything wrong here?
On Wednesday 11 January 2006 18:56, John Meyer wrote: <snip>
Doing anything wrong here?
Um... it'd work better if it were two SUSE boxes, wouldn't it? (he he, couldn't resist) SuSEFirewall2 will block the Samba client workgroup select/test process. You have to drop the firewall, configure the client and then enable Samba traffic in SuSEFirewall2. The XP box also has to be configured in a similar fashion to allow outside connections to the share. If you're interested, I can e-mail you privately a *lot* of important information you'll need to secure that XP box... as much as it /can/ be, anyway, without wiping it off the drive and replacing it with Linux. hth & regards, - Carl
On Thursday 12 January 2006 02:08, Carl Hartung wrote:
If you're interested, I can e-mail you privately a *lot* of important information you'll need to secure that XP box... as much as it /can/ be, anyway, without wiping it off the drive and replacing it with Linux.
I'd be interested in seeing this, if only to be able to tell people the degree of danger with Microsoft Windows. Any chance you could put it on a webpage somewhere in a tarball? -- Pob hwyl / Best wishes Kevin Donnelly www.kyfieithu.co.uk - KDE yn Gymraeg www.rhedadur.org.uk - Rhedeg berfau Cymraeg www.cymrux.org.uk - Linux Cymraeg ar un CD
On Thursday 12 January 2006 2:44 am, Kevin Donnelly wrote:
On Thursday 12 January 2006 02:08, Carl Hartung wrote:
If you're interested, I can e-mail you privately a *lot* of important information you'll need to secure that XP box... as much as it /can/ be, anyway, without wiping it off the drive and replacing it with Linux.
I'd be interested in seeing this, if only to be able to tell people the degree of danger with Microsoft Windows. Any chance you could put it on a webpage somewhere in a tarball?
Kevin Donnelly
Carl, Please post it here also. Most of us need this information. Thanks, Stan
On Thu, 2006-01-12 at 07:00 -0600, Stan Glasoe wrote:
Carl,
Please post it here also. Most of us need this information.
Thanks, Stan
I second that suggestion ... most of us *have to* support Win Boxes in Networks ... I am responsible for a company's network; as with most real world networks, it is heterogeneous. Interesting reading here: http://linux.oneandoneis2.org/LNW.htm "Linux is Not Windows" - but both are there to stay (for a while anyway). A little one-sided view (tech vs user), but the last 6 paragraphs are good and call for what Carl has to offer. :-) Al
On Thursday 12 January 2006 08:31, Al Active wrote:
On Thu, 2006-01-12 at 07:00 -0600, Stan Glasoe wrote:
Please post it here also. Most of us need this information. I second that suggestion ... most of us *have to* support Win Boxes in Networks ...
OK, All, I can't believe I'm doing this on my beloved SUSE list, but I'm
getting (and responding to) direct requests, too.
- Carl
Here's the info:
Sign up and download the .pdf "Securing Windows XP":
http://www.abxzone.com/forums/showthread.php?t=83570
Read it completely before implementing any suggestions.
More valuable info is available at these resources:
http://www.markusjansson.net/exp.html
http://www.tweakhound.com/xp/security/page_1.htm
http://csrc.nist.gov/itsec/guidance_WinXP.html
http://www.dwheeler.com/essays/securing-windows.html
If the system has already been connected to the internet, you should wipe it
clean and reinstall XP while the system is *not* connected to the Internet.
The procedure is described in the document you downloaded, above.
Additional Software:
Spybot Search & Destroy (Google "download Spybot Search & Destroy")
Install, configure and run Spybot Search & Destroy. Don't be rushed... take
your time and use *all* the tools. It's like a Swiss Army Knife full of
useful/important stuff that stays hidden until it's noticed and pulled up. If
you invest the hours to explore and learn it, the effort will pay off in
spades. Specifically:
- 'deselect' any "ignore products" under "Tools"
- install the Spybot S&D hosts file
- enable all of the IE 'tweaks'
- change all IE start/search pages to Google or another safe site
- Use the "Immunize" function
- view and check unknown processes in the process explorer
- view, export and delete (careful!) unwanted items in the startup viewer
- remove unwanted/suspect Active-X controls (Browser Helper Objects)
- Verify only authorized/desired network connections are configured
(no phantoms; keep the 'green checkmark' items)
Ad-Aware Personal (Google "download Ad Aware Personal")
Install and run this scan, too.
Spywareblaster (Google "download Spywareblaster")
Install and enable all protections.
Trojan Hunter (Google "download Trojan Hunter")
Download, install and run the free 30 day trial. If you do a lot of surfing
(don't!) and you also do e-mail (don't!) on XP, the paid subscription is
definitely worth it.
Grisoft's AVG Free (This is a PITA to find; keep digging, it's there.)
This is a great anti-virus program. In the years I've used it (since day one)
I've only had one or two config 'hiccups' to iron out after virus
definition /and/ program updates. They've done a great job of making it as
painless as possible.
Zone Alarm Free (Google "download ZoneAlarm Free")
You turn OFF the built-in XP firewall and ICS (Internet Connection Sharing)
participants (5)
-
Al Active
-
Carl Hartung
-
John Meyer
-
Kevin Donnelly
-
Stan Glasoe