Search Results

If you want to create a NIDS, at it's most basic level it is collection and analysis:

a) Grab packets off the wire (e.g. tcpdump)
b) Scan the dumped data for stuff you want to search for* (e.g....

SSLScan - Fast SSL Scanner (http://sourceforge.net/projects/sslscan/)

Enjoy!
Nick

Ken,

Something to note about automated security scans (Retina, Nessus etc) is that they can give false-positives. The results of such scans still need to be interpreted by someone who understands...

Whilst I do use Solaris auditing on all my boxes, I don't currently have access to my test system to try out the syslog plugin. A few thoughts:

1. Are you seeing the lo events in the syslog feed?...

A frequently asked question (on this forum and others) is what Solaris books are available. The quality of such books can range from downright awful to "bible-like" textbook. There are sysadmin...

Check out OpenBSD (http://www.openbsd.org/). It has a built-in firewall called 'pf (http://www.openbsd.org/faq/pf/index.html)' which you can use - it is very flexible and should have all the...

#!/usr/bin/perl

sub randomPassword {
my $password;
my $_rand;

my $password_length = $_[0];
if (!$password_length) {
$password_length = 10;
}

my @chars = split(" ",
"a b c d e...

Home at least 3 days a week, depending on client meetings or specific on-site requirements for pen-testing or information discovery with tech teams. Other than that I work from my home office...

Free accounts to try out various OSes including FreeBSD, HP-UX and Linux at http://www.testdrive.hp.com/

http://docs.sun.com/app/docs

Check out the Solaris 10 documentation (http://docs.sun.com/app/docs/prod/solaris.10)

Also, there are a couple of books on Solaris which you might find helpful (in...

Indeed, but AFAIK this was done by accident (was supposed to be for DSPP members only). HP quickly locked it down once the mistake had been realised.

You can either check eBay for a second-hand media kit (expect to pay ~US$100-200) or otherwise you'll need to buy one from direct from HP or a reseller. I ordered a new HP-UX 11i v1 media kit (with...

You *really* need to familiarise yourself with the Oracle documentation! The latest version (as of 19/12/06) is Oracle Database 10g Release 2 (10.2.0.1.0) for Solaris on Sparc 64-Bit platforms. The...

fstat might help you here. In OpenBSD,

fstat | grep ':22' | awk '{print $3}' | uniq

This will search the fstat output for port 22, and then awk will give you the third column which is the PID...

Your average firewall doesn't have anti-virus features built into it. *But*, this really depends on your firewall, what proxy features are built in, etc. This is not a simple area, it's one that...

I would advise against using your firewall boxes for anything other than firewalling. The more services you run on a box, the more vulnerable it becomes. Your firewalls should be rock solid bastions...

Windows/AD/Exchange does not have to be a security nightmare - provided you patch, configure and administer the boxes properly (and that advice goes for ALL systems). You would benefit from checking...

Well, OpenBSD is free so that price is always a winner in my book! As for hardware, this is of course dependent on the number of packets / size of the pipe you've got connected. An old pentium box...

Without wanting to start a flame war, for what you have described I would use OpenBSD, not FreeBSD. OpenBSD has an excellent track record for security, and it comes with a built-in firewall called...

If you're relatively new to AIX, try out The AIX Survival Guide (http://www.amazon.co.uk/exec/obidos/ASIN/0201593882/towenaar-21/) - it is an excellent read and very informative for people just...

Personally I would tar.gz the data before pushing it onto a Windows system. I've got a Sun Ultra 5 here running OpenBSD as my firewall/fileserver/webmail system and once per week I tar/gzip my...

If you don't want to do the local tape backup thing, you've got quite a few options, really.

You could:

- Connect the machine to a network, and use an 'scp' script (part of OpenSSH, which has...

You'll probably need an EVC to VGA adapter. Try John Burns (http://cgi2.ebay.co.uk/aw-cgi/eBayISAPI.dll?ViewFeedback&userid=unixnerd) at http://www.unixnerd.demon.co.uk/parts_unix.html. He's normally...

Not necessarily a Solaris question, but thought this the best place for it.

My main Linux/OpenBSD workstation (really old athlon) is on its way out, and I am considering getting an Ultra 30 or 60...

Not too sure if you can make the box a member of the domain, but you may want to look at Microsoft's UNIX integration tools to see if there is a migration or connectivity tool that will achieve what...