Security :: Warning: /etc/hosts.deny, Line 20: Missing ":" Separator?
May 15, 2010I am getting a warning from /etc/hosts.deny
Code:
ALL: 192.168.1.3
ALL: 172.68.11.204
[code]...
ADVERTISEMENT
Security :: Configure Deny.hosts For Opensuse 11.1?
Sep 7, 2010I just downloaded the DenyHosts2.6python2.5.rpm for deny.hosts from sourceforge and would like to set it up. I normally use fish://, smb:// and ftp:// on the boxes on my lan. I already have files called hosts.allow and hosts.deny in the /etc folder. Will the rpm configure hosts.deny when first run?
View 1 Replies View RelatedUbuntu Security :: Sshd And Hosts.deny Not Always Observed?
Jan 18, 2010I'm having troubles trying to understand this problem:my homeserver until yesterday had a public IP, staying on network, with sshd running and all was fine;this evening I changed the IP, giving it a local lan address, and what happened if I tried to connect to it by ssh?I got an error about "Connection closed by remote host". Google helped me finding that was regarded to hosts.deny file, that was actually containing a lineALL:ALLthat I commented, and all was fine.My question is: why the hosts.deny (that has never changed) was observed only with the local IP?I tried to switch back to the public IP and leaving ALL:ALL, and it did connect without any problem
View 1 Replies View RelatedUbuntu Security :: Deny Hosts Removing An Ip And Checking Tcpwrappers?
Oct 21, 2010I could not find any where the documentation the only best which I got was [URL]
My question is the following blog says to remove an IP from /etc/hosts.deny which denyhost has blocked
[URL] you need to have a directory /usr/share/denyhosts/data I do not find any such directory
Also when I tried to check tcp wrapper configuration as given here
[URL]
tcpdchk -v Cannot find your inetd.conf or tlid.conf file. Please specify its location.
what does the above output mean? How do I make sure denyhosts is doing its job?
Ubuntu Security :: Denyhosts Working \ First Time Adding Lots Of Ips To The Hosts.deny?
May 16, 2011I just set up denyhosts and it worked properly the first time adding lots of ips to the hosts.deny.I then set it to run every 12 hours noon and midnight.I wanted to see if ran properly and I got all this.Does it look like its working?
Code:
May 15 12:00:01 hyrule CRON[14286]: (root) CMD (python /usr/share/denyhosts/denyhosts_ctl.py -c /usr/share/denyhosts/denyhosts.cfg )
[code]...
Security :: Invalid Login Attempts Not Refused Using Deny Hosts And Conf Of Denyhost Not Working?
Oct 28, 2010I am using denyhosts on a server so in a config file/etc/denyhosts.confthe following value is setQuote:DENY_THRESHOLD_INVALID = 3which as per their configuration file saysQuote:
DENY_THRESHOLD_INVALID: block each host after the number of failed login
# attempts has exceeded this value. This value applies to invalid
# user login attempts (eg. non-existent user accounts)
[code]...
Ubuntu :: No Hosts File - Just Hosts.allow And .deny?
Jan 26, 2011Probably an easy (which means stoopid) question...I am trying to reroute a website using my hosts file so that it matches my servers certificate file for testing without effect dns and the live site.When I went to edit my /etc/hosts file it is non-existent. I have, I am assuming in it's place, hosts.allow and hosts.deny. Can anyone explain why I do not have a hosts file?
View 1 Replies View RelatedUbuntu Networking :: How To Get Hosts.deny Work In 10.04
Sep 12, 2010I have read the man files on hosts (deny/allow) and think I understand how they are supposed to work but reality has proven me wrong.
My simple test case was to add "ALL: ALL " to the end of hosts.deny which I though should make the Internet not work. I can still look up hosts fine so apparently I don't understand these files or Ubuntu is ignoring them.
This is my hosts.deny file
Code:
Code:
and hosts
Code:
hosts.deny is the only file I have edited (so far)
General :: Denyhosts Keeps Adding IP Address To Hosts.deny?
Aug 10, 2010I have setup Denyhosts to run on my server, and have been using it succesfully for the last few weeks, to allow me to ssh into my server from my home dev machine.
This morning, I accidentally typed my password incorrectly three times - and ended up being locked out of the system (tghat was ok, because that was what was supposed to happen). I logged into the server via another way and took the following actions (in the order given)
/etc/init.d/ssh stop
/etc/init.d/denyhosts stop
removed my IP address from /etc/hosts.deny
/etc/init.d/ssh start
[Code].....
Programming :: Missing Separator Mean Tab Instead Of Spaces?
Jul 9, 2010I am unable to write a simple Makefile. Though I know the concept am facing this error:
Makefile:2: *** missing separator (did you mean TAB instead of 8 spaces?). Stop.
Should I give a tab or spaces not able to continue.
General :: Error Missing Separator When Compiling - Make
Nov 16, 2010I have problem with compiling server... I finish ./configure without any problem, and now, when I write make, I see that: Quote: Makefile:360: *** missing separator. Stop. I read something, and know, that error shows when there are problem with spaces. And I should use there a tab. On line 360 I have:
Code: @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/account.Po@am__quote@ I try to change this one space inside to tab, but that doesnt work for me... Terminal always show error in the same line.
Software :: Installing MySQL 50 - Makefile 34 Missing Separator
May 6, 2010I want to install mysql50-server and when I write make install clean. I receive this error:
Makefile:34: *** missing separator. Stop.
Here is the code :
# New ports collection makefile for:MySQL-server
# Date created:Fri Apr 11 10:06:26 CET 2003
# Whom:Alex Dupre <sysadmin@alexdupre.com>
#
# $FreeBSD: ports/databases/mysql50-server/Makefile,v 1.251 2010/02/16 11:03:02 ale Exp $
#
PORTNAME?=mysql
PORTVERSION=5.0.90
PORTREVISION?=0
CATEGORIES=databases
MASTER_SITES=${MASTER_SITE_MYSQL}
MASTER_SITE_SUBDIR=MySQL-5.0
PKGNAMESUFFIX?=-server .....
".ifdef USE_MYSQL
.error You have 'USE_MYSQL' variable defined either in environment or in make(1) arguments. Please undefine and try again.
.endif"
Security :: Use Current /etc/hosts File To Do An Ssh-keyscan Instead Of Making A Special List Of Hosts?
May 2, 2011I'm trying to use ssh-keyscan to get some known_host file population going on, but I have a ton of hosts I want to scan, all with multiple aliases in /etc/hosts. Is there a way to use my current /etc/hosts file to do an ssh-keyscan instead of making a special list of hosts that (from what I've read) ssh-keyscan needs?
View 2 Replies View RelatedFedora Security :: Iptables To Deny All Except Localhost?
May 15, 2011i was hoping that someone in here could possibly help me out with my iptables rule set. First here is what i would like iptables to do, i want iptables to deny all packets or traffic from the outside coming in and for output allow the things i need like web and irc etc... Also, i would like iptables to deny access to all services like sendmail and ssh except i would like localhost to have access to everything. What i mean by localhost is that when i run my iptables script it loads fine except when i try ssh from localhost i get this output:ssh -l user localhostssh_exchange_identification: Connection closed by remote hostI know what most of you are thinking, why do i need to ssh into localhost from localhost just open another terminal, well i am getting myself familiar with iptables i want all services logged and blocked but not from localhost. I cant seem to figure out this problem and i have tried several different things. Here is my iptables script, I am hoping that someone out there can tell me what i am doing wrong...
#!/bin/bash
iptables -v -F;
iptables -v -A INPUT -i lo -j ACCEPT;
[code]....
Security :: Deny Root Access To A Given File
Dec 7, 2010I would like to know if it is possible to deny the access to a file for root? Would ACL's be a possibility? I have "googled" around but haven't found anything interesting (except SELinux). I should secure a password file to an important database.
View 6 Replies View RelatedSecurity :: Deny Host When Changing SSH Port 22
Oct 30, 2010I have an Asterisk on an externally hosted vServer with Lenny. In order to further protect the SSH access I intended to change the Port number 22 to something like 55555. For this I changed the /etc/ssh/sshd_config file and restarted ssh. This caused unfortunately the following problems:
(1) The first login works but DenyHost writes now the IP in its list so that the second login with the same IP is blocked.
(2) With RESET_ON_SUCCESS = yes several logins were possible with the same IP, but later it also was blocked for some still unknown reasons.
(3) Files can be uploaded for being edited, but they can't always be saved. When they can't be saved the next login with this IP is blocked. It thus looks like the blocking can occur while being connected. When the files can't be saved it is however still possible to copy files from the computer to the vServer.
I add below the entries in the auth.log from a logout and a login. It shows further how suddenly the attempts to save files were blocked. After this session the IP used for it was blocked. I don't know where the message "Unable to open env file: /etc/default/locale" comes from. If I remember right I had these messages already before. I don't know how much that is really important.
[Code]....
Security :: Firewall, Can't Deny Ips After Allowing Local Subnet?
Feb 23, 2010If I allow, my server's IP is:
11.11.11.11
If I allow 11.11.11.11, and block 22.22.22.22
22.22.22.22 can't access the server
But if I allow 11.11.11.0/24, and block 22.22.22.22
22.22.22.22 can still access the server!!
Does anyone know why that is?
Security :: Deny Download Some File Types On Squid?
Nov 15, 2010How to deny download some file types on squid ?
I tried below in my squid.conf
acl blockfiles urlpath_regex -i "/etc/squid/src/blockfiles"
http_access allow localnet freesites !blockfiles
and in my /etc/squid/src/blockfiles
.[Ee][Xx][Ee]$
.[Aa][Vv][Ii]$
.[Mm][Pp][Gg]$
.[Mm][Pp][Ee][Gg]$
.[Mm][Pp]3$
.[Rr][Aa][Rr]$
I still able to download
Ubuntu Security :: Unable To Deny Sudo Access To Regular User Account.
Dec 19, 2010I made a Desktop User account. When I went on that account, it allowed me to execute sudo as if I was an administrator. I don't know what might be causing this. I do have ufw set up and blocking incoming connections. Do you guys know what might be at the root of this?Also, when I used sudo from the user account (which I shouldn't have been able to do), I provided the password for my admin account.
View 9 Replies View RelatedSecurity :: Firewall Deny Traffic Inbound Destination Port 53372 & 53375?
May 5, 2010I have a question, on my firewall at work I am seeing a constant flow of denies from many different source IP addresses, of tcp/udp destination port 53372 & 53375.What in the world is that, and why these two ports over and over
View 1 Replies View RelatedGeneral :: What Does /etc/hosts Specifying In Particular Line
Jul 2, 2010I'm doing a how-to to setup my debian server. It tells me to edit /etc/hosts to look like this (with different IPs and hostnames of course)
Code:
127.0.0.1 localhost.localdomain localhost
192.168.0.100 server1.example.com server1
# The following lines are desirable for IPv6 capable hosts
::1 localhost ip6-localhost ip6-loopback
fe00::0 ip6-localnet
ff00::0 ip6-mcastprefix
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
ff02::3 ip6-allhosts
I'm curious about that second line. I know it'll be my actual server ip, but what does it specify? what is the 'server1' at the end of the line specifying? I *think* that 'server1' would be part of my bash prompt when i login, but am not sure. Is it used for anything else?
Security :: Ipsec Not Working Between Two Hosts?
Nov 3, 2010I've set up two security associations(in and out) on two hosts, and then set up two policies per host that should filter traffic to those SA's. Yet when I try to ping one host from the other I get no response, meaning that the filters on one side work and drop unprotected packets, but both hosts are configured to communicate using ipsec. Can anyone point me in the right direction?
Code:
ip xfrm state add src 192.168.77.23 dst 192.168.77.24 proto esp spi 0x53fa0fdd mode transport reqid 16386 replay-window 32 auth "hmac(sha1)"
[code]...
Server :: PHP From Command Line Gives A Warning?
Dec 28, 2010Whenever I try and use php from the command line, I get this message:PHP Warning: PHP Startup: Unable to load dynamic library '/usr/lib64/php/modules/imagick.so' - /usr/lib64/php/modules/imagick.so: cannot open shared object file: No such file or directory in Unknown on line 0The problem isn't the missing module, it is the warming message itself -- it is breaking scripts that rely on the output.I tried shutting off errors, changed my error reporting to:
error_reporting = E_ALL & ~E_NOTICE | E_CORE_WARNING | E_COMPILE_WARNING
And:
display_startup_errors = Off
Doesn't seem to matter though - it is almost like it isn't using the php.ini file at all
Ubuntu Security :: Allow Foreign IP Address In Hosts?
May 30, 2011I found this IP address in my hosts.allowQuote:ALL: 119.42.68.232I cannot find any other evidence of intrusion.
View 4 Replies View RelatedSecurity :: Detecting Infected Hosts - Honeypots - Wireshark - Nepenthes
Sep 2, 2010Is there a 'plugin' for wireshark to analyze traffic and spot infected (windows) hosts? I have been using nepenthes with no luck. (and doubt all hosts are clean) is there some better way (other than using antivirus on each host)?
View 10 Replies View RelatedGeneral :: When Starting Xampp - Get -Warning Bogus Unix Line
May 3, 2010Not sure why, but the last couple of tiems I have started xampp from root terminal, I have got this message after each program start.
Warning a bogus unix line
Since that last time it was not there, other that add sweb spahes etc., I have only tried to unpack the Control Panel which was unsuccesfull anyway saying I needed some other programs.
Ubuntu Installation :: Upgrade 10.04 - Errors Occur - Missing Resources Warning
May 4, 2010Had Ubuntu 9.01 in Windows 7 as a Dual Booty - no problems.
When upgrade to 10.04 attempted the following errors occur:-
1. Missing Resources warning - " The Networkmanager Applet could not find some required resources. It cannot continue."
When I click OK wireless connection is totally lost with no means of reconnecting.
2. Download progresses but freezes at the download of "Preparing memtest86+"
Security :: Hosts.Allow Vs. SSH / Sending Message Connection Closed By Remote Host?
May 29, 2010I have set up SSH and redirected the ssh server to listen on another port other than 22 for a bit of added security.
Now in hosts.deny I have:
ALL : ALL
In hosts.allow I have:
SSH : ip_address_of_client
I can no longer connect. I get the message: ssh_exchange_identification: Connection closed by remote host.
When I change hosts.allow to read:
ALL : ip_address_of_client
I can successfully connect the server.
However, I only want to allow SSH access in hosts.allow. What is the correct syntax?
I have tried and failed with each one of these:
SSH : ip_address:port_number
SSH2 : ipaddress
sshfwd-portnumber : ip_address_of_client
Security :: Getting "Security System Warning!" Window In Firefox?
May 9, 2010Using slackware 12.2, xfce, Firefox 3.0.16 and for the past few days i have been getting Persistent System Security Window that looks like MS Firewall and you can't click on the X or Cancel because then it activates a so called security analysis with green progress bar. I open a terminal real quick and issue pkill firefox command.I have been trying to get to the basicconfig site to follow tutorial on firefox security update but that window keeps comming back.I emptied out my /tmp files but i am still having same problem and don't know what to do
View 4 Replies View RelatedCentOS 5 Hardware :: Warning: Missing REQUIRED Dependency For Option 'network': Libnetsnmp-devel
Mar 22, 2009We have a networked L7780 and I cannot find the dependancies below to satisfy the hplip (3.9.2) installer. Centos 5.2 Server - full development environment etc. Standard Centos repos + rpmforge.
INSTALL MISSING OPTIONAL DEPENDENCIES
-------------------------------------
warning: There are 6 missing OPTIONAL dependencies.
note: Installation of dependencies requires an active internet connection.
warning: Missing REQUIRED dependency for option 'network': libnetsnmp-devel
[code]...
