Security :: RHEL Server Is Broadcasting On LAN And Choking The Network?
Jan 3, 2011
I have a RHEL 5 Server dedicated to web hosting. HTTPD 2.2.x.x is running on it with PHP and MySQL. The machine is not a server system (hardware wise, a C2D 2.66 with 2GB RAM and 2 x NICs). I have a CIR Fiber link with a pool of live IPs. The machines including this web server is plugged into a switch which has all the live interfaces and is separate from the LAN switches. The problem i am facing is that, when ever this web server is plugged in, the traffic on live switch is choked. Internet slows down to a halt (as live interface of proxy is plugged in this switch. DNS stops resolving name due to time outs. Mail delivery is slowed and the mail ques pile ups. The moment i get this machine of the switch, all the traffic becomes normal. Therefore i have deduced that this is the faulty server. I do not know if this server is hacked and working as a bot or it is a mere hardware problem(faulty LAN Card).
View 3 Replies
ADVERTISEMENT
Sep 6, 2010
why my new Ubuntu 10.04 computer won't automatically advertise afp thru avahi to the network? This is a new install of Ubuntu 10.04, I downloaded and installed newest version of Netatalk, and the Avahi daemon. Both installed with no issues. (I followed instructions from articles on here) I can manually login to Ubuntu afp share from my iMac, by going to "Go to Server" and typing in the ip 10.0.1.3 and putting in the Ubuntu username and password. I just can't get it to advertise or broadcast itself to the network like it is supposed to using netatalk and avahi. I've followed all of the tutorials I can find on this, but nothing works. Even if I issue the command to restart avahi daemon, Ubuntu still isn't seen in the iMac's finder window? Because I can manually login to it, I am assuming that netatalk is working properly. I've even tried to issue the command to restart netatalk first, then restart avahi, but still nothing?
View 2 Replies
View Related
Feb 14, 2011
My wireless network doesn't work. I get no list of broadcasting networks. I have runned 'collectHWData.sh'. This is the output. Does anyone know what I should do to make my wireless work? The problem occurs on my clean installation of SuSe 11.3 on my laptop PC C500 Compaq.
Code:
collectNWData.sh V0.6.5.4.1 (Rev: 1.282, Build: 2011/01/25 19:33:38 UTC)
!!! CND0470I: Reduced analysis capability and less network information because script was
[code]...
View 9 Replies
View Related
Feb 6, 2010
We are trying to define an appliance based on Suse for an application server and Web server Apache, so we would like to know configuration best practices for network and security, is there any paper/doc about best practices?
View 3 Replies
View Related
Mar 26, 2010
I am running Red Hat Enterprise Linux AS release 4 (Nahant Update 7). The server was recently rebooted and wouldn't come up. After some investigation we found that the system would not boot because several files had been zero'd out (not deleted):
* All of these files had a date of March 11, 2010 with a time 03:46
* A zero byte file called /halt was also found with a date of 08:46
We could manually boot to the latest kernel, but none of the startup scripts would run. We analyzed the system looking for any file created on March 11 that were also 0 bytes. Once we had a list, we were able to determine that the system could be recovered without a full blown reinstallation of the OS.
We did a rescue boot from the installation CD, mounted the system volume privately, and edited the grub.conf file. We then brought up the network and copied the needed files from another RHEL v4.7 system. Rebooted the server and check the OS, databases, and apps.
My question is - Has anyone seen this behavior before? I seems like we may have been cracked or at the very least someone has cleared the files needed to recover the system smoothly.
View 3 Replies
View Related
Jan 27, 2011
I am not well versed in networks, I want to understand whether broadcasting is possible through a TCP based Server? If yes, then what are the complications? I searched Google and found this: [URL] It said
Quote:
The types of broadcasting uses on TCP/IP that I know about are:
1. ARP on IP
2. DHCP on IP
3. Routing table updates.
View 4 Replies
View Related
May 19, 2010
My DNS server is baring 192 series IP for ex: 192.168.10.100, need to configureloadbalancer IP in that DNS server, where loadbalancer is baring 172 series IP. for ex : 172.56.67.19.is it possible to cofigure the loadbalancer ip in DNS server? if it is, please let me know the configuration details and procedure.
View 2 Replies
View Related
Jul 23, 2011
Two years ago, I have set up two node Active-passive cluster on VSphere 4.0 and it is in production ever since.
I've tried to setup another cluster for testing purposes on the same VSphere, and failed. And what is interesting is that those new two nodes came up with cluster.conf of the production cluster, even though I did not try to bring them in the existing production cluster. I googled a bit and found something stating that two different clusters might behave strane if on the same network segment. Question is, did anyone try to create two different clusters on the same hardware, or on the same network VLAN?
I will do some more digging after weekend, and get back to you.
View 1 Replies
View Related
Feb 4, 2010
we are using a DELL server installed with RHEL release 3(update 2) for running SS7 stack. we are using it for telecommunication testing. from last two months it is getting out of network though the server is up. we are not able to connect it through ssh using putty from local desktop. I tried searching for the reason in logs under /var/log/messages but i could not fine it. please tell me the path under which i can find the system error messages. We are out of support from DELL........
View 2 Replies
View Related
Mar 2, 2011
is possible to edited the default RHEL CD to have it automatically install RHEL based off of a kickstart file that I will store locally on the CD. My plan would be to put a cd in a server and have the OS automatically being installed.
View 3 Replies
View Related
Feb 1, 2011
We are planning to migrate our LINUX server from RHEL 3to RHEL 5. What are the configuration difference between RHEL 3 to RHEL 5 for webserver installations?
View 1 Replies
View Related
Dec 14, 2010
what are the major differences between rhel 5.2 and rhel 5.4
View 2 Replies
View Related
Dec 9, 2009
I have a database server running RHEL 5.1 32 bit that suffered some catastrophic failures about 6 months ago. We were able to patch it back together and keep it running, but now the manufacturing site it supports is going to shut down for two weeks and I would like to replace it permenantly. Does anyone have any guidance for that sort of thing? I'd like to have the new server up and running before hand, basically changing the hostname/ip and restoring the databases only on conversion day. I've done this in the past with HP UX - Red Hat conversions, but this is my first red hat to red hat move. Any advice or shortcuts?I forgot to add the other wrinkle. The new server will be running 64bit linux.
View 1 Replies
View Related
Jul 5, 2010
how efficient and effective are these snort, argus, ossec etc etc for an organization having 3500 PC Network, connected through 700+ Cisco Devices (Layer 2 and Layer 3), and scattered on 130 different sites (geographically)? what should be the combination of products and what should be the architecture for an efficient forensics activity?
View 2 Replies
View Related
May 7, 2010
I am using nessus to evaluate the security of a web server. I have started up the nessus daemon on the server, here's the netstat output:
Code:
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 *:ldap *:* LISTEN 3565/slapd
tcp 0 0 *:mysql *:* LISTEN 4026/mysqld
tcp 0 0 *:pop3 *:* LISTEN 3584/xinetd
tcp 0 0 *:sunrpc *:* LISTEN 3463/portmap
tcp 0 0 *:www-http *:* LISTEN 13855/httpd2-prefor
tcp 0 0 *:ssh *:* LISTEN 3577/sshd
tcp 0 0 *:nessus *:* LISTEN 6118/nessusd: waiti
tcp 0 0 *:smtp *:* LISTEN 3636/master
tcp 0 0 *:https *:* LISTEN 13855/httpd2-prefor
udp 0 0 *:sunrpc *:* 3463/portmap
It's listening on the default nessus port 9390. I am trying to connect to the nessus server instance using Open-VAS Client. I have generated the client and server certificates, I have pointed the client at the User Certificate File, the User Key File and I have a CA cert. I have created a user account on the nessus server. The problem is that when I try and log in from the Open-VAS client it keeps saying it can't connect. Is there anywhere I can check to see if it's being caught in a firewall, or where I can see if the connection is even making it to the server..
View 4 Replies
View Related
Apr 27, 2010
setup my static network connection Here are my details :
IP : 172.16.152.137
Subnet : 255.255.255.192
Gateway : 172.16.152.191
Primary DNS : 172.16.0.1
[code]....
but after this setup when i restart my network #service network restart while bringing up the eth0 the following message is displayed before [OK] - RTNETLINK answers : Invalid Argument now it seems either this setup is wrong or not sufficient to set up the connection, whenever i try to ping 172.16.0.1 it showing connect : Network is Unreachable
View 11 Replies
View Related
Jan 18, 2010
I am trying to route a security video server which is inside my network to the internet. my network is two interface eth0 (internet network xxx.xxx.xxx.198 and internal network 192.168.5.1
I am trying to see an web server on 192.168.5.184
View 2 Replies
View Related
Apr 25, 2011
So, the NSA puts out some handy documentation on locking down a RHEL server (running centos 5.6 x64 myself) here, [url]. Under "Ensure System is Not Acting as a Network Sniļ¬er" on page 63, it says that if any numbers below the first line in /proc/net/packet, that it is acting as a network sniffer.
I get the following output:
Code:
Unless I've been pwned, I don't know exactly what could be causing this. Besides samba, nmap (compiled from source, not from yum), screen, and rtorrent, there's nothing I've installed beyond the fresh install I did a few days ago. I was not running nmap when looking at /proc/net/packet.
View 8 Replies
View Related
May 26, 2011
I am using RHEL 5, how to enable ACl in /etc/fstab
View 2 Replies
View Related
Feb 25, 2011
We have installed RHEL 5.4 on our servers and everything is running fine. Now I have gone through various server hardening checklist and most of them suggest to enable SELinux. We have several services running on Linux box. Now my question is, do we have to make any chagnes to the existing configurations if we enable SELinux. Or we just enable SELinux and leave it as it is. Because I have had prior experiences where SElinux will stop many services and restrict access to many libraries when enabled.
View 1 Replies
View Related
May 30, 2010
I'm trying to setup a NFS4 server (no security, local home network behind FW). It seems that I'm missing something because 'rpcinfo -p' does not list v4 for NFS: petit-pois:/home/eric# rpcinfo -p
[Code]...
View 3 Replies
View Related
Mar 28, 2011
I'm in the process of building a Linux server using spare desktop (HP dc 7700p PC with USB wireless adapter) and of course it will be used as the wireless security training exercise so I just wondering if Ubuntu or RHEL is suitable for me to learn ?BackTrack Linux is too hard to use and doesn't automatically detect the USB wireless network card usually.
View 1 Replies
View Related
Jun 1, 2010
To comply with standards I need to change the root pw every so often. However, I really don't have a need to know the root password; as the only thing using root, is for ssh authenticating via ssh keys. What I want to do is automate the root password change monthly via a cron job, to a random value. Is there a way to do this without knowing the previous password?
View 14 Replies
View Related
May 3, 2011
I'm playing around with the RHEL 6 install so as to create a minimal install image to be used as a generic node for a cloud. I posted this in the security section as reducing the number of services etc seems like a security activity, i.e. reducing the running processes to minimize the attack surface.
Anyways, looking through linux from scratch etc, and the NSA hardening list I'm a bit overwhelmed. Anyone have hints on any good documentation saying what is really needed for a basic system with network/ip/arp/eb rules? The RHEL 6 minimal basic puts in a c/c++ compiler along with other things. that seems unnecessary to me for a basic minimal install.
View 4 Replies
View Related
Jul 14, 2010
Is it possible to configure the RHEL 5.5 syslog to accept SNMP traps? That is I want to use a central logging server to pick up other systems syslogs, and SNMP messages from systems that cannot use remote syslog functions.
View 3 Replies
View Related
Jun 4, 2010
In the web about ONLINE TV BROADCASTING under/with LINUX SERVER, i am not sure even how to spell it correctly, because i never had a need of such NFO. I need any kind of information regarding ONLINE TV BROADCASTING. I tryed but maybe my tryes are not hard enough to find something in the web, i know such information is not widespread.
View 9 Replies
View Related
Mar 26, 2011
i use ubuntu linux,and i can view webcams of other people on fubar but i can not broadcast my own, i already installed adobe flash on my browser. heres the error i get
"camera in use in other window, close other window to chat"
i know it seems like an easy fix but the camera is not in use anywhere else so i was looking for advice on why i cant broadcast if i can view others broadcasting. the camera itself works because i installed 'cheese' and it opens up and works without a problem just having a problem using it for live broadcasting, maybe i am missing a plugin for mozilla...
View 1 Replies
View Related
Jul 18, 2011
I have been able to get a live Ustream broadcast going but the video is terrible. Ustream recommends using Adobe's Flash Media Encoder (FMLE) but there is no linux version. I was browsing around and found webcamstudio that is supposed to work for this but I cant seem to figure this out. My webcam is a Logitech HD Webcam Pro 9000 and is capable of the level of quality that I want. I and the audio I have works great. I am currently running Linux Mint.
View 1 Replies
View Related
Aug 10, 2009
using a text interface for my computing but I have run into an issue. Does anyone know of a CLI networking tool that will allow me to connect to a non-broadcasting network? I have tried cnetworkmanager and attempted wpa_cli. The first does not seem to support it and I have not played too terribly much with the second. I have discovered that when I boot my comps into KDE and tell NetworkManager to connect to the network cnetworkmanager can find it then, but that does me no good for what I want, which is to boot my computers straight to runlevel 3 and get connected. If it means anything I am running F11 on a Dell Inspiron 1521 Laptop with a Broadcom wireless card (awfully annoying to set up, but it is working fine) as well as F11 on a desktop of my own designing with a Netgear wireless adapter.
P.S. I realize that broadcasting the network would be the trivial solution but alas I am not the admin on the router and he is out of town.
View 6 Replies
View Related
Jun 19, 2011
My wireless card (Linksys, A Division of Cisco Systems [AirConn] INPROCOMM IPN 2220 Wireless LAN Adapter (rev 01)) Will not broadcast to wireless router. Somewhere along the line it showed as being disconnected. Using ndiswrapper and it is installed correctly and the wireless switch is in the on position.
View 1 Replies
View Related
