Marti’s Home

spammers in your network

There are two simple ways not to get on SORBS (or simmilar) lists, first is simple:

use

modprobe ipt_recent ip_list_tot=32 #ip_list_tot - defines the size of ip_recent file
iptables -A FORWARD -p tcp –dport 25 -m recent –name SMTP –seconds 30 –update -j DROP
iptables -A FORWARD -p tcp –dport 25 -m limit –limit 1/second –limit-burst 5 -j LOG –log-level info –log-prefix “smtp-log ”
iptables -A FORWARD -p tcp –dport 25 -m recent –name SMTP –set -j ACCEPT

This sample allow users to send only one mail per 30 seconds, but when somebody tries to send next mail in this 30 second time, the counter is reset, and starts counting from 0 (zero ). Every connection of this type will be loged into kernel log.

Second way needs some more configuration, but it has additional functions.

It is called SMTP Proxy and in this way you can control almost every user. And say that user A can send the XXX content, but user B cannot.

I will write some howto in my free time.

Tags: , iptables, ipt_recent, SMTP, SMTP Proxy, spam, virusses in lan

open comments

Because there is some friends who read my blog, and didn’t registered (why?)… for now… you do not have to be logged in to comment.

Tags: comment, coyote, roadrunner

VMware Server 2.0

I have just recieved invitation to test the VMware Server 2.0 beta… Downloading in progress, after check I’ll write my observations. For now, you can read some product informations:

If you’ve experienced the benefits of virtualisation with VMware Server, you know that it can reduce costs and take the complexity out of IT. Now, the beta version of VMware’s next generation free virtualisation solution, Server 2.0, is available and we want you to put it to the test!

What’s new in Server 2.0?

• Enhanced navigation and management with new Web-based user interface
• Expanded operating system support, including Windows Vista, Windows Server 2008 (current beta release), Red Hat Enterprise Linux 5, and Ubuntu 7.x
• Improved scalability with support for up to 8 GB of RAM per virtual machine, up to 2 virtual SMP processors, and up to 64 virtual machines per host

Don’t wait to take advantage of this great opportunity to be part of the virtualisation revolution!

UPDATE…

I’m just after instalation… where is the f… manual?  The history of this shit looks like the history of Tivoli Storage Manager version 5.2 was great! Version 5.3 with management console based at websphere… took about 2GB of RAM only to start the console…

Problem with VM 2.0 is simmilar - afert start - it took about 700MB of memory - without any VMachine started. Ok… i have to check it at Linux Server… because Windows XP and virtualizations - sux :).

First… ok… I’ll read the manual and share my opinion

Tags: 2.0, beta, server, Tivoli Storage Manager, TSM, virtualization, vmware

Problem with installing lstat in PLD 2.0

After successfull install of lstat (version lstat-2.3.2-14) , executing the security_lstat shows at the end:

Can’t exec “-m”: Nie ma takiego pliku ani katalogu at /usr/bin/security_lstat line 274, <STDIN> line 10

it is because of the fact that there is an error in /usr/bin/security_lstat line 13

just change

my $htpass =”";

to

my $htpass =”/usr/bin/htpasswd”;

and simply install

poldek -i htpasswd-apache

Tags: AC, Can't exec "-m": Nie ma takiego pliku ani katalogu, lstat, PLD, security_lstat

Migrating from Bind 9.2 to Bind 9.4

I noticed a problem after upgrading Bind from 9.2 to 9.4 that every ask from remote adress for my nameserver has been refused. I google some, and i got an information that from version 9.4 the following settings become the defaults:

allow-query-cache {localhost; localnets;};

allow-recursion {localhost; localnets;};

So if you want to have a dns server for your network, you simply have to add

allow-query { any; };

In your default options. And get sth like this:

options {
directory “/”;
pid-file “named.pid”;
auth-nxdomain yes;
datasize default;
allow-query { any; };
};

Tags: , 9.2, 9.4, allow-query, Bind, problem

Fox TV apologizes for Polish slur on ‘Back to You’

Some news from NY Daily News

BY RICHARD HUFF
DAILY NEWS TV EDITOR

Wednesday, November 21st 2007, 4:00 AM

Facing pressure from Polish officials and Polish-American groups, Fox last night apologized for airing an “insensitive line of dialogue” in an episode of “Back to You” and vowed never to air the clip again.

The move to cut the line from the sitcom came after the Polish consul general in New York, Krzysztof Kasprzyk, sent a note to Polish-American groups asking them to write to Fox boss Rupert Murdoch.

At issue was a line from actor Fred Willard, who plays an ignorant sportscaster. “Bowling is in your Polish blood, like kielbasa and collaborating with the Nazis,” said Willard’s character.

What especially troubled the Polish-American groups is that Poland was the only Nazi-occupied country that did not collaborate with the Nazis.

“In no way was this dialogue meant to insinuate any connection between the Polish people and the Nazi movement,” Fox said in a statement. “The line was delivered by a character known for being ignorant, clueless and for saying outlandish things. Allowing the line to remain in the show, however, demonstrated poor judgment, and we apologize to anyone who was offended.”

Tags: america, back to you, fox, tv

Risk of defragmentation

1st rule: Never defragment drive, when you have a small doubt that it can be corrupted!

2nd rule: Never defragment encrypted drives!

3rd rule: Do not stop defragmentation… disconnect the power from your PC… there is a big chance that you will never see your desktop again

Tags: defragmentation, encyrpt, windows xp

New Subaru Impreza WRX STi… big disapoint

It looks awfull… I have one thing on my mind… It looks like Daewoo Lanos… Where is the continuation of the gretest WRC car? Check yourself…

For me, Subaru, was always better than Mitsubishi Evo, but now… look for the Evo X and make your own decision!

Tags: 2007, evo, impreza, mitsubishi, sti, subaru, wrx

Security model… what sould be done, to make a secure enviroment

The first: Authentication

This is the main point of every implementation. It links users identity with a level of privileges. Identity by definition is unique, there can be only one! If you want two users to have the same access - remember to make them a group.

The second: Authorization

It usually happens after the authentication. It checks the rights with the access controller. Once a subject is authenticated, it may be authorized to perform different types of access.

The third: Integrity

Integrity means you do not have to check if the data has not been modified. In the context of a single message it means that the content is exactly the same as was sent by the author, this is typically achived through digital signatures. In the context of message exchange it also means that all the messages were received exactly in the same order as they were sent.

The fourth: Confidentialy

Confidentialy is the property that data is not made available to unauthorized individuals, entities, or processes. Typically confidentiality is achieved through the encryption and authorization.

The fifth: Accountability

It’s the only aspect that happens after the event took place. Sometimes it is too late to review situation after it happend. So better prevent it, and has all data in the event log.

To be continued…

Tags: authorization, exchange, messages, model, modeling, Security, SOA

Hello stranger, nice to see you :)

So… you found my blog…

whatever how, whatever where… you are here… and I hope you enjoy… if You do - please leave your fingerprint (register, share my news, share my tips, share my blog). Don’t hesitate… it is written just to be shared.

Tags: about, home, welcome