[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-security] SSL - RAQ4i

Subject: [cobalt-security] SSL - RAQ4i
From: Mark Fowkes <mark@xxxxxxxxxxxxxx>
Date: Mon, 21 May 2001 10:52:55 +0100
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Hi

Hoping someone can help me, i have a RAQ4i and had a site running SSL on it
quite happily, we then got hacked at the server had to be totally
reinstalled.
i know want to reinstate the SSL cert on the raq, i have the public and the
private key in text format but i cant seem to get it working! Lollipop to
the first person with any suggestions. Thanks in advance

Mark Fowkes

-----Original Message-----
From: cobalt-security-request@xxxxxxxxxxxxxxx
[mailto:cobalt-security-request@xxxxxxxxxxxxxxx]
Sent: 18 May 2001 20:12
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: cobalt-security digest, Vol 1 #346 - 6 msgs


Send cobalt-security mailing list submissions to
	cobalt-security@xxxxxxxxxxxxxxx

To subscribe or unsubscribe via the World Wide Web, visit
	http://list.cobalt.com/mailman/listinfo/cobalt-security
or, via email, send a message with subject or body 'help' to
	cobalt-security-request@xxxxxxxxxxxxxxx

You can reach the person managing the list at
	cobalt-security-admin@xxxxxxxxxxxxxxx

When replying, please edit your Subject line so it is more specific
than "Re: Contents of cobalt-security digest..."


Today's Topics:

   1. say cheese (Sean Chester)
   2. Re: RaQ3-All-Kernel-4.0.1-2.216C24III.pkg (Cobalt)
   3. Re: Safe SMTP relaying (Kevin D)
   4. Re: say cheese (Bill Irwin)
   5. Re: RaQ3-All-Kernel-4.0.1-2.216C24III.pkg (Bill Irwin)
   6. Openssh where is the new OpenSSH package? (Michael Aronoff)

--__--__--

Message: 1
From: "Sean Chester" <seanc@xxxxxxxxxxxxxxxxxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>
Date: Fri, 18 May 2001 09:52:59 +0100
Subject: [cobalt-security] say cheese
Reply-To: cobalt-security@xxxxxxxxxxxxxxx

for those that didnt realise they
had been a victim of the li0n work help is at hand.. in the form of the
Cheese
worm.

The cheese worm scans linux boxs looking for infected boxs and will
fix them.

clever.. until someone alters the
cheese worm code.

it looks to me like the li0n worm was the start of things to come...
WORMS..

rgds.
Sean


--__--__--

Message: 2
From: "Cobalt" <cobalt@xxxxxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>
Subject: Re: [cobalt-security] RaQ3-All-Kernel-4.0.1-2.216C24III.pkg
Date: Wed, 16 May 2001 02:41:49 +0200
Reply-To: cobalt-security@xxxxxxxxxxxxxxx

> Steve West wrote:
> >
> > Oh, boy! I should have known better than to try to install the damn
update.
> > :(
> >
> > Can anyone elaborate a little more on what problems the kernel update
causes
> > on a Raq3?
> >
> > I know if I call Tech Support, they are more than likely going to deny
any
> > problems.
> >
> > Thanks!
> >
> > SW
> >
> > -----Original Message-----
> > From: cobalt-security-admin@xxxxxxxxxxxxxxx
> > [mailto:cobalt-security-admin@xxxxxxxxxxxxxxx]On Behalf Of Wayne Sagar
> > Sent: Tuesday, May 01, 2001 11:12 AM
> > To: cobalt-security@xxxxxxxxxxxxxxx
> > Subject: Re: [cobalt-security] RaQ3-All-Kernel-4.0.1-2.216C24III.pkg
> >
> > At 04:52 PM 5/1/01 +0200, you wrote:
> >
> > >I was just wondering if anyone already applied the RAQ3
> > >RaQ3-All-Kernel-4.0.1-2.216C24III.pkg released by cobalt at
> > >http://www.cobalt.com/support/download/raq3.eng.html ?
> >
> > Yes... don't do it! Apparantly the "fix" it was supposed to do did not
fix
> > anything and there seem to be problems with it. Server is running ok but
> > there may be an issue with bus speeds and god knows what else...
> >
> > Wayne
>
> Most problems "associated" with Kernel patch are because the end user
> decided to make kernel or module changes. Issues like upgrading apache,
> adding unsupported third party apps which make kernel changes, all
> contribute to these problems. A majority of "Kernel patch hosing the
> systems" are really related to something else the customer did to the
> system. Most people who email us worried that the patch did something,
> usually come to find out it was something else they had misconfigured.
>
> Should you find yourself with a "hosed" system and need to get it back
> up and running, you can un-install the patch. You do so by dropping in
> terminal as su - root. Cd to /var/lib/cobalt/uninstallers and find the
> uninstaller for the kernel patch. Type "./<filename of package>" without
> quotes and it *should* uninstall. If it doesn't you would probably have
> to OS Restore. You did backup before attempting the patch didn't you?
>
> --
> Bill Irwin
> Technical Support Engineer
> Sun Microsystems, Inc.

Hi Bill,

I make all the things you coment, upgrade Apache , install SSH,
change editors, change configs, ... and the last Kernel patch
run like a charm.

One more question Bill, In the last path (proFTP) why have Sun released
the 1.2.2RC1 and not the last RC2? Have Sun make changes to original?
I query this to know if I can upgrade to RC2 w/o problems.

TIA
R.Batalla




--__--__--

Message: 3
From: "Kevin D" <kdlists@xxxxxxxxxxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>
Subject: Re: [cobalt-security] Safe SMTP relaying
Date: Fri, 18 May 2001 08:46:15 -0400
Reply-To: cobalt-security@xxxxxxxxxxxxxxx

From: "Simon Wilson" <simon@xxxxxxxxxxxxx>


> I have a client that uses an msn account to send and receive e-mail.
> How do I go about finding out what IP address to put into the SMTP "relay
> for the following hosts/domains" box on the admin pages. Is it just
> www.msn.com ?

You don't. You tell him to use MSN's smtp servers. It has become an accepted
practice that you use the smtp of your ISP to send email.

Or, if you really want to make it look like he's using your raq, create a
CNAME entry for MSN's smtp servers on your box and tell the customer to use
that.

The only other alternative would be to open your relay to every dialup IP
that MSN has, which could not be accomplished simply by adding www.msn.com
to your relay box.

Kevin


--__--__--

Message: 4
Date: Fri, 18 May 2001 10:12:01 -0400
From: Bill Irwin <bill_irwin@xxxxxxxx>
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: Re: [cobalt-security] say cheese
Reply-To: cobalt-security@xxxxxxxxxxxxxxx

Sean Chester wrote:
> 
> for those that didnt realise they
> had been a victim of the li0n work help is at hand.. in the form of the
> Cheese
> worm.
> 
> The cheese worm scans linux boxs looking for infected boxs and will
> fix them.
> 
> clever.. until someone alters the
> cheese worm code.
> 
> it looks to me like the li0n worm was the start of things to come...
> WORMS..
> 
> rgds.
> Sean
> 


Sean,

Actually no, there have been several worms before that.. Ramen is the
first I know of on linux based OS.


-- 
Bill Irwin

--__--__--

Message: 5
Date: Fri, 18 May 2001 10:15:21 -0400
From: Bill Irwin <bill_irwin@xxxxxxxx>
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: Re: [cobalt-security] RaQ3-All-Kernel-4.0.1-2.216C24III.pkg
Reply-To: cobalt-security@xxxxxxxxxxxxxxx

Cobalt wrote:
> 
> > Steve West wrote:
> > >
> > > Oh, boy! I should have known better than to try to install the damn
> update.
> > > :(
> > >
> > > Can anyone elaborate a little more on what problems the kernel update
> causes
> > > on a Raq3?
> > >
> > > I know if I call Tech Support, they are more than likely going to deny
> any
> > > problems.
> > >
> > > Thanks!
> > >
> > > SW
> > >
> > > -----Original Message-----
> > > From: cobalt-security-admin@xxxxxxxxxxxxxxx
> > > [mailto:cobalt-security-admin@xxxxxxxxxxxxxxx]On Behalf Of Wayne Sagar
> > > Sent: Tuesday, May 01, 2001 11:12 AM
> > > To: cobalt-security@xxxxxxxxxxxxxxx
> > > Subject: Re: [cobalt-security] RaQ3-All-Kernel-4.0.1-2.216C24III.pkg
> > >
> > > At 04:52 PM 5/1/01 +0200, you wrote:
> > >
> > > >I was just wondering if anyone already applied the RAQ3
> > > >RaQ3-All-Kernel-4.0.1-2.216C24III.pkg released by cobalt at
> > > >http://www.cobalt.com/support/download/raq3.eng.html ?
> > >
> > > Yes... don't do it! Apparantly the "fix" it was supposed to do did not
> fix
> > > anything and there seem to be problems with it. Server is running ok
but
> > > there may be an issue with bus speeds and god knows what else...
> > >
> > > Wayne
> >
> > Most problems "associated" with Kernel patch are because the end user
> > decided to make kernel or module changes. Issues like upgrading apache,
> > adding unsupported third party apps which make kernel changes, all
> > contribute to these problems. A majority of "Kernel patch hosing the
> > systems" are really related to something else the customer did to the
> > system. Most people who email us worried that the patch did something,
> > usually come to find out it was something else they had misconfigured.
> >
> > Should you find yourself with a "hosed" system and need to get it back
> > up and running, you can un-install the patch. You do so by dropping in
> > terminal as su - root. Cd to /var/lib/cobalt/uninstallers and find the
> > uninstaller for the kernel patch. Type "./<filename of package>" without
> > quotes and it *should* uninstall. If it doesn't you would probably have
> > to OS Restore. You did backup before attempting the patch didn't you?
> >

> 
> Hi Bill,
> 
> I make all the things you coment, upgrade Apache , install SSH,
> change editors, change configs, ... and the last Kernel patch
> run like a charm.
> 
> One more question Bill, In the last path (proFTP) why have Sun released
> the 1.2.2RC1 and not the last RC2? Have Sun make changes to original?
> I query this to know if I can upgrade to RC2 w/o problems.
> 
> TIA
> R.Batalla

I don't handle the development end of things.. just Tech Support. I
would guess because when they were working to make sure it won't mess up
anything in the gui, RC1 was out and not RC2. If you are on the bleeding
edge, remember, the rest of us are not. It may take a while for things
to become available after testing.

-- 
Bill Irwin
Technical Support Engineer
Sun Microsystems, Inc.

--__--__--

Message: 6
From: "Michael Aronoff" <ma@xxxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>
Date: Fri, 18 May 2001 09:43:02 -0700
Organization: CIIC, Inc.
Subject: [cobalt-security] Openssh where is the new OpenSSH package?
Reply-To: cobalt-security@xxxxxxxxxxxxxxx

T.D. wrote "If I then try to install the newer pkg"

Where can I get a newer .pkg of OpenSSH?

Thanks,

Michael Aronoff Out
ma@xxxxxxxx <mailto:ma@xxxxxxxx> 
Calabasas, CA
818-591-7825



--__--__--

_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security


End of cobalt-security Digest
Prev by Date: Re: [cobalt-security] about proftpd Update 4.0.1 ?
Next by Date: Re: [cobalt-security] FTP with admin
Previous by thread: Re: [cobalt-security] about proftpd Update 4.0.1 ?
Next by thread: [cobalt-security] Broken Site Usage reports
Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index