Security :: Site-to-site Ouija Board Connection?
Oct 3, 2010Maybe a site-to-site Ouija board connection.
View 5 RepliesMaybe a site-to-site Ouija board connection.
View 5 RepliesI use Firefox 3.5.9 and Ubuntu 9.10.
There is a suspicious amount of data (more than a megabyte) being uploaded from my computer whenever I log onto a commercial web site on which I advertise rental properties.
Is there any way I can see the data being uploaded - I am pretty familiar with the Unix/Linux system and commands.
I have to ubuntu machine (9.10 and 10.4) with a openvpn tunnel between them.This is the situation:
Code:
NetworkA 192.168.0.0/24
|
UbuntuA br0:192.168.0.3 (openvpn bridge between eth0 and tap0)[code].....
UbuntuA has one only interface etho and there are two openvpn instance: one bridge istance with br0 and another instance with tun0.
UbuntuA is not the gateway for networkA. UbuntuB is the gateway for NetworkB.I need to comunicate between pc on networkB e those on networkA.This is the "ping situation" (no pc tested has an active firewall):
ubuntuA vs ubuntuB: OK
ubuntuB vs ubuntuA: OK
pc on NetworkA vs ubuntuA and ubuntuB: OK[code].....
I've been on a quest to enable full routing through my openvpn tunnel between my office and the colo. Masquerading will work, however it will throw off anything key based and makes a lot of things just more difficult and vague in general. Is there an easy way to do this via iptables? I tried using quagga hoping it would magically solve my problems, however it does not seem to do my routing for me . I just did a basic static route within zebra...
View 3 Replies View RelatedI have three locations with a central office connected to two remote locations. At the central office I run on a cisco asa 5505 two site to site vpns. The remote end of the first site is a checkpoint firewall , and the remote end of the second site is racoon on debian. Both sites are up and working. However, where at the first site traffic goes both ways, at the second site it only works from the central office to the remote office.
For example, I can ssh from a host in the central office to a host in the first remote site (through checkpoint firewall,) then ssh back from that host at the remote office to any host in the central office. In contrast, after I ssh from a host in the central office to a host in the second remote office (through racoon), I cannot see the central office hosts (ping the ip address of a central office host, ssh, etc. all fail.) The vpn settings at the central office (the cisco asa 5505) are identical. So it seems to me that some routing magic is missing on the host running racoon at the second remote office. Where would such setting reside? racoon config files? iptables?
In the office there is a local network with samba+openldap PDC. The local domain name is company.net. The company desided to create a corporate Website on a remote hosting and desided that the site's domain should be company.net which is same as local network's domain name. So now it is not possible to reach that corporate website from within the company's local network because, as I guess, bind9 which is installed on above menioned PDC looks for company.net on a local webserver. Is there a possibility to let people from this local network browse the remote site?
View 1 Replies View RelatedA site belonging to the Savannah GNU free software archive was attacked recently, leading to a compromise of encrypted passwords and enabling the attackers to access restricted project material.The compromise was the result of a SQL injection attack against the savannah.gnu.org site within the last couple of days and the site is still offline now. A notice on the site says that the group has finished the process of restoring all of the data from a clean backup and bringing up access to some resources, but is still in the middle of adjusting its security settings.
View 4 Replies View RelatedIn fedora 12 how can i configure the system such that a particular user can browse only selected web sites.
View 9 Replies View RelatedMy question is how to block a subdomain of a site. To make it as clear as possible, I'll give an example. I am regularly entering this arbitrary site [URL] which redirects me to this page [URL] and this index.html takes an image from a subdomain which is a subfolder of itself, that is: [URL]. What I am asking is blocking the images to be taken, but not the main page itself, i.e. to block www.somesite.abc/images/ without blocking the overall www.somesite.abc.
My idea was to use the /etc/hosts file by redirecting to loopback address:
Code:
127.0.0.1 www.somesite.abc/images
But it looks as if it doesn't affect things at all. Should I use it another way? Modifying /etc/hosts.deny maybe useful?
I am trying to add any web site into the exceptionsitelist for dansguardian, but I get cannot edit the exceptionsitelist file located at:/etc/dansguardian/listsSo, I tried to chmod 777 exceptionsitelist I was told that:chmod:ging permissions of 'exceptionsitelist': Operation not permittedAm I trying to add a site as a whitelisted site the correct way?If not, how do I do this?Please provide details on if this is done in a gui? ( I don't have a gui or know where it is located at least )What is the gui called?Where is it located ( under which mean like administration or preferences etc. )If there is no gui, am I looking in the correct folder for trying to add a web site for whitelist?Am I trying to whitelist correctly by adding a web site to the exceptionsitelist folder?I want to bypass everything dansguardian does. I read about greylist. I do not want to do that
View 3 Replies View RelatedI want to restrict a user accessing my ftp site.
1) i can block the user in ftp configuration file
2) i can block the user in PAM or /etc/host.deny
i heard that if pam is denying the user and ftp is allowing the user the user can get the access it means that ftp conf file is stronger than host.deny
Occasionally my machine displays the following warning whenever left to itself for an hour or so. "www.windowsvistatestdrive.com:443 uses an invalid security certificate. The certificate expired on 09/16/2009 10:52 AM. (Error code: sec_error_expired_certificate)"
I am not trying to access this site. It is not always the same url. My machine, described below, is networked to an XP machine which recently had to be recovered after a viral attack. Since I am not usually interested I decline to use the certificate and the warning goes away.
I am having a web server (apache) and 3 sites are hosted in it, named as www.web1.com,www.web2.com and www.web3.com.
I need to restrict www.web2.com to Internet users and allow only to local network. At same time I need to allow www.web1.com and www.web3.com to both Internet and LAN users.
I've discovered that after restoring my site's backup this has happened to me again. How to delete the hacked /home/crocbits directory so that I can restore the backup under the same username. When I try to delete /home/crocbits I get this message when logged in as root:
[Code]...
I want to capture all packets from site "www.examplesite.com" so I checked its ip address in an ip address look up and it was 123.456.abc.def.So I set my filter to "dst host 23.456.abc.def"However I then realised that multiple ip address point to ww.examplesite.com, for example say the following ips also go to987.654.321.000111.222.333.444So is there a filter that will automatically capture all traffic going to www.examplesite.com or do I have to go and manually find all it's ip addresses and pass them all to the filter?
View 2 Replies View RelatedI just got an email from google saying my site contained malware. It has a line in it: "<script src='http://whitepix.info/3'></script>". I've noticed its recursively in all my .html and .txt files in my website. Can I make a linux script to run that will go through all my .html and txt files recursively and delete that line from them? I don't know how it got in all of them.
View 6 Replies View RelatedI'm having a mare with SSL with Apache. I have set it up and if I go to the follwoing address http://192.168.1.2 it seems to work and the pages are delivered to my browser. However if I try to access it from an exernal PC it will not work.
I can get to the non-ssl part of the site so the static ip is resolved and the port forwarding all works.
Does any one have any ideas (and in fact i think I may have just solved it - Ports - 80 mis open but I haven't done anything with 443. Will check it out and post back.
I have a server and i think that my server is under Ddos attack. i see that server is not having much load and only few process runs but my site opens very slow. i executed the following command on my ssh:
[Code]....
I would like to know the blocking methode In a Firewall or a Router.whether i will be done by Protocol wise, ho? or it will done through Host wise, How ?
View 2 Replies View RelatedI have the latest packages installed with F11.when I go to site the FF freezes.Does this happen to anyone else?How can I find out what is wrong?
View 6 Replies View RelatedCan someone link me to get Fedora 11. I'm looking for it, but I can't find it on the site. I'm also looking for the one that is 700mb. Since the ones I keep finding also on google around 3gb. Don't want to wait that long and I remember downloading one that was around 700mb
View 2 Replies View RelatedI need to mirror a website. However, each of the links on the site's webpage is actually a 'submit' to a cgi script that shows up the resulting page. AFAIK wget should fail on this since it needs static links.
View 1 Replies View Relatedhow do i configure Open VPN to automatically use a certain VPN for ONLY firefox, ONLY on a particular site? I don't want it to be applied system wide and screw up my IM client and all the sites that i have remembered passwords with, only for a site or 2 where there are regional restrictions.
View 1 Replies View RelatedI am going to try out the unity ppa which comes out today-12th november-. What site will I be able to get it from?
View 5 Replies View RelatedAfter the last update every time when I try to see my mails from gmail, with the use of any app like plasmoid-gmail or kmail notifier, appears a window with this title. "You are about to log in to the site "mail.google.com" with the username "********", but the website does not require authentication. This may be an attempt to trick you. Is "mail.google.com" the site you want to visit?"
View 9 Replies View RelatedI've decided to start learning how to set up a web-site on CentOS. I've installed Apache's httpd and it's working. Now I have absolutely no experience with web-sites. I assume there's a GUI based web editing software that'll allow me to design a homepage.
View 1 Replies View RelatedBrowsers under Debian distros used to allow cookies per site but now it seems it is all or nothing. Perhaps I should install another web browser. I have Epiphany and Iceweasel.
My main problem is that I cannot set non-volatile the number of results per page in Google to 100.
I will just ask on how will I ban a certain site to a certain IP address on the network? I am using Dansguardian Web filter.
View 1 Replies View RelatedI have start apache, and can see my site on 127.0.0.1, but I have router and don't know how to check my site from outside (Internet bellow). I have no domain name registered. Just want to check web server.
That should be easy. (or not?)
The router has static IP xxx.xxx.xxx.239 from the my internet provider and assign 192.168.1.100 to my computer.
Internet
Router
My computer - host my site
How to see my site from Internet?
I have one site running on ssl and i want to configure second. How can i do this? My first site is configured on port 443.here is ports.conf
Code:
ServerName kdelchev.com
NameVirtualHost *:80
[code]...