|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
On Mon, Jan 17, 2000 at 11:58:37PM -0500, Michael C. Toren wrote:
> [ other very good suggestions snipped ]
>
> > SATAN against your machine. Run Crack against your passwd file. (Even
> > better, use shadow passwords.) Use nmap, netstat, nessus, tripwire, ssh,
>
> Even if you use shadowed passwords, run crack against /etc/shadow to find
> users who have picked poor passwords. Taking the time to educate them
> can be a pain, I know, but it's well worth it in the long run.
The news kids will be assigned passwords and if they change them, the system
I have says if the word is a dictionary word or not.
Actually, since some of them are brats or know brats, they're more
likely to be careful than more innocent users, I think. Any
compromised account goes bye bye.
I set up PortSentry, but it looks too much like it's over-active.
What's good for just emailing me when someone tries more than once or
twice to access a service? Reacting to passes at the box seems a bit
provocative to me.
The news box is going to both require that people come from specific
IP addresses and authenticate when they log on, but I'm not sure yet
of all the details, or what the best system is for setting this up.
--
Rebecca Ore
http://www.ogoense.net
______________________________________________________________________
Philadelphia Linux Users Group - http://plug.nothinbut.net
Announcements - http://lists.nothinbut.net/mail/listinfo/plug-announce
General Discussion - http://lists.nothinbut.net/mail/listinfo/plug
|
|