[1780] in linux-security and linux-alert archive

home help back first fref pref prev next nref lref last post

[linux-security] RE: Re: Re: Checking remote servers

daemon@ATHENA.MIT.EDU (Mark Spieth)
Mon May 25 04:03:19 1998

Date: Sun, 24 May 1998 19:17:47 -0400
From: Mark Spieth <mspieth@shellserv.com>
To: "'linux-security@redhat.com'" <linux-security@redhat.com>
Resent-From: linux-security@redhat.com
Reply-To: linux-security@redhat.com


------ =_NextPart_000_01BD8748.A37E4B40
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

Also remember that mgetty can be set up to allow incoming calls by phone =
number assuming that you have caller ID and a modem that supports caller =
ID. This would be harder to get past as the hacker would have to guess =
what phone numbers are allowed.

Mark Spieth
A good day is where schools have all the money they need,=20
And the Air Force has to hold a bake-sale to buy a bomber.


-----Original Message-----
From:	PaZeN [SMTP:pazen@pazen.ml.org]
Sent:	Saturday, May 16, 1998 6:15 AM
To:	linux-security@redhat.com
Subject:	[linux-security] Re: Re: Checking remote servers

The best and easiest way to Admin Remote Servers is to connect via a =
call-back
system and admin it using telco lines.  Then you would have relitively =
little
chance of being attacked via the internet, and all but the best system =
crackers
know how to subvert call-back (those you can't stop anyways).  There is =
a
cheaper/easier way to change a write protected filesystem.  This is to =
use a
ZIP/Jaz disk from iomega (www.iomega.com).  With these disks you can =
write
protect the disk using a password.  That is what I would do.

PAZEN, AAmaral, pazen@pazen.ml.org.

P A Z E N                                            =
eMail:pazen@pazen.ml.org
Consulting                                            =
WWW:http://pazen.ml.org
UNIX (SVR4 & *BSD*), NT,                         C/C++, COBOL, SQL, =
HTML, XML
* Linux Powered *     "Intelligence is a double edged sword, weild a =
shotgun"

On Wed, 13 May 1998, Andrew Kuchling wrote:

//PaZeN writes:
//>How many users are going to need access to each system?
//>Where are these users logging in from? (i.e. telnet, dumb terminals,=20
//>     xterminals, etc)?
//>What is the single app/daemon that you need to run?
//>What kind of breakin are you most afraid of internel or external?
//
//	The application involves connecting a server machine to a
//controllable microscope; these microscopes would be at fabrication
//sites all over the place.  (Centralizing them is not an option.)
//Users would run client programs that connect to a custom daemon
//written for this application that lets them control the microscope and
//view images; The machines therefore need only run sshd (to let the
//administrator log in) and the custom server; no sendmail, named, ftpd,
//or anything else need be running.
//
//	Users would be connecting over the Internet at large, not
//via a private network, so the servers are vulnerable to the same
//attacks as any Unix system.  Obviously physical security and the
//security of the daemon are also very important, but they're not what
//I'd like to discuss.
//
//	Discussing this with a friend last night, he suggested burning
//a CD-ROM with a live filesystem, and running off the CD.  The hard
//drive would then be only used for storing data files and /tmp; if
//logging is done to another machine, there are no logs to be written
//locally.  That's a very good idea, I think; if the system can be set
//up to boot from the CD-ROM and then mount it as /, that would make
//substituting Trojans very difficult.  Fixing bugs in the system would
//then require burning a new CD and sending it via Fedex, which would be
//highly annoying, but that can probably be tolerable.
//
//Kevin Smith wrote:
//>I would use tripwire... (definately not rpm -Va)...  use tripwire, =
which
//>you should have on a cdrom, including all of the checksums... all of =
it
//>on the unmodifiable cdrom... or even store it all locally, and write =
a
//>script that will ssh into the machine, install a tool to get the =
checksums
//>or whatever you need... run all the tests on the checksums locally, =
and
//
//	Hm; what's wrong with 'rpm -Va'?  Obviously, this would have
//to be run against RPMs on the CD, not against the possibly compromised
//database on the hard drive.  Or is it that rpm only has MD5 checksums?
//
//--=20
//A.M. Kuchling			http://starship.skyport.net/crew/amk/
//People marry most happily with their own kind. The trouble lies in the =
fact
//that people usually marry at an age where they do not really know what =
their
//own kind is.
//    -- Robertson Davies, _A Voice from the Attic_
//
//--=20
//----------------------------------------------------------------------
//Please refer to the information about this list as well as general
//information about Linux security at http://www.aoy.com/Linux/Security.
//----------------------------------------------------------------------
//
//To unsubscribe: mail -s unsubscribe test-list-request@redhat.com < =
/dev/null
//

--=20
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------

To unsubscribe:
  mail -s unsubscribe linux-security-request@redhat.com < /dev/null

------ =_NextPart_000_01BD8748.A37E4B40
Content-Type: application/ms-tnef
Content-Transfer-Encoding: base64
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------ =_NextPart_000_01BD8748.A37E4B40--

-- 
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------

To unsubscribe:
  mail -s unsubscribe linux-security-request@redhat.com < /dev/null


home help back first fref pref prev next nref lref last post