bastille-linux-users Mailing List for Bastille Linux
This tool locks down Linux and UNIX systems.
Brought to you by:
jay
Menu
▾
▴
bastille-linux-users
You can subscribe to this list here.
| 2000 |
Jan
|
Feb
(1) |
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2001 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
(1) |
Dec
|
| 2002 |
Jan
|
Feb
(1) |
Mar
|
Apr
(1) |
May
|
Jun
|
Jul
(1) |
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2003 |
Jan
(1) |
Feb
|
Mar
|
Apr
|
May
(1) |
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2005 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
(1) |
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
|
From: <bea...@co...> - 2005-07-09 20:57:07
|
Hello,
Thanks in advance to anyone that can help me!
Problem:
I'm getting this message when trying to run Bastille via GUI or text
ERROR: 'RHFC3' is not a supported operating system.
Valid operating system versions are as follows:
'DB2.2' 'DB3.0' 'RH6.0' 'RH6.1' 'RH6.2'
'RH7.0' 'RH7.1' 'RH7.2' 'RH7.3' 'RH8.0'
'RH9' 'RHEL3AS' 'RHEL3ES' 'RHEL3WS' 'RHEL2AS'
'RHEL2ES' 'RHEL2WS' 'RHFC1' 'RHFC2' 'MN6.0'
'MN6.1' 'MN7.0' 'MN7.1' 'MN7.2' 'MN8.0'
'MN8.1' 'MN8.2' 'HP-UX11.00' 'HP-UX11.11' 'HP-UX11.22'
'HP-UX11.23' 'SE7.2' 'SE7.3' 'SE8.0' 'SE8.1'
'SE8.2' 'SE9.0' 'SE9.1' 'SE9.2' 'TB7.0'
'OSX10.2' 'OSX10.3'
RHFC3 is notably missing, but all of the online docs I've read indicate that it is supported. I've tried to research this particular issue I'm having, but I'm either missing something basic, or have no idea what I'm doing (very possible). Newbie here, (ouch!) but I feel that I've followed all of the directions. Here is my setup-
1. FC3 (uname -r: 2.6.9-1.667.stk16) fully patched (except kernel obviously). I'm running the stk16 for driverloader support for my linksys wireless card
2. I've installed the latest PerlTk modules (from http://www.bastille-linux.org/perl-rpm-chart.html) via CPAN for UI support
3. I've installed Bastille 3.0.6-1.0 (seems to be the latest)
Wha? huh? Grrrrrrrr.... *sigh*
Best,
Disgruntled User Must Be Another Skulking Simpleton
|
|
From: Owens, W. <wen...@fn...> - 2003-05-22 17:29:04
|
Greetings. I discovered a thread on bastille-linux-discuss archives from a month or so ago, where there was a discussion about modifying source code to support RHSA2.1 "Pensacola". My question: Has this been implemented? I have an RHSA2.1 system on which I'd like to run Bastille. Which release do I need to use? Thanks much. Wendy Behnke |
|
From: John D. <jpd...@ys...> - 2003-01-27 15:11:14
|
No, they're not. See below. Toby Johnson wrote: > Psad says that my ISP (attbi.com, I go through insightbb.com) is scanning > me. They have scanned UDP and TCP ports in the 33000-34000 range so far, > from to different IP's (204.127.198.4 and 63.240.76.4). Probably these hosts are not scanning you. PSAD (actually, iptables) has false positives when DNS response times are slow. Check the source port on the "scan" packets. If it's 53 (DNS) then what you are seeing are late DNS responses that are being dropped and logged by your firewall. This problem has to do with the connectionless nature of UDP. The kernel tries to track UDP "connections", but there's no way to be sure when a UDP "connection" is closed, so it just times out the "connection" if there's no activity after a while. Unfortunately, sometimes the "connection" is still open when this happens and any packets from the remote host are dropped and logged and can trigger PSAD warnings. > The problem is that these are also their DNS servers. So the question is, if > I block all incoming packets from them, will that affect my ability to use > DNS at all? It's possible you would no longer be able to use DNS. I would recommend instead adding these hosts to psad_auto_ips with a danger level of "0" (or is it -1?) so that PSAD will no longer send false scan warnings. John Dalbec |
|
From: terry <te...@xn...> - 2002-07-23 03:13:56
|
hello, I am on a plain vanilla redhat 7.3 box (just the base system). I have installed Bastille-2.0.0-0.3.i386.rpm along with the Bastille-Curses-module-2.0.0-0.3.i386.rpm and upon executing InteractiveBastille, I get the wonderful: This distribution version: RH7.3 is not yet supported. Could someone please give me some feedback on this? tia terry |
|
From: Toby J. <to...@to...> - 2002-04-05 15:39:32
|
Psad says that my ISP (attbi.com, I go through insightbb.com) is scanning me. They have scanned UDP and TCP ports in the 33000-34000 range so far, from to different IP's (204.127.198.4 and 63.240.76.4). The problem is that these are also their DNS servers. So the question is, if I block all incoming packets from them, will that affect my ability to use DNS at all? Also, how would I set this up in my Bastille config file? I see sections on blocking services, but not hosts. My understanding is that /etc/hosts.deny is only honored for services that are "wrapped" with tcpd, which Apache, my FTP server, etc. are not. What's the best solution here? tia, toby |
|
From: Razvan C. <raz...@ca...> - 2002-02-15 08:51:58
|
Hello,
I just installed Bastille from the rpms on mdk8.1, answered Y to some
limits questions, and 1 too many as it seems.
If I try to 'su -' from a text console - it works. Remote login via ssh
- OK. From an X terminal - "Filesize limit exceeded". Kdesu says
"conversation with su failed". /bin/su is unmodified:
-rwsr-xr-x 1 root root 18172 Sep 14 18:16 /bin/su*
Checked the filesize limit - 100M. Increased it to 1G. No change.
Logged out. Same. Rebooted. Same. I don't have 1G files, and I will NOT
delete my DivXes just to find that the problem is somewhere else :)
Any suggestions please? Thank you.
--
Razvan Cosma
SysAdmin Telemach SRL Piatra Neamt
raz...@ca...
|
|
From: how t. <y4...@ho...> - 2001-11-22 05:02:59
|
[root@REdHat 7.2]# InteractiveBastille Using Tk user interface module. Only displaying questions relevant to the current configuration. This distribution version is not yet supported! Compilation failed in require at /usr/sbin/InteractiveBastille line 256. _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp |
|
From: Michael B. <mb...@em...> - 2000-02-22 22:17:30
|
I am pretty consistently annoyed with the backspace/delete unavailability in the script(s). Has anyone come up with a solution to this? My typical situation is where I make a mistake or change my mind and then I can't cancel that option without killing the script which refuses to run after that. I ended up creating a user named admin[large string of backspaces and deletes] at one point. That was fairly amusing to remove. If no one has looked at the issue I will take a look at the Perl libraries/functions available to handle user input as I have done some of this before. Are there any design "rules" about what can be included or how it should be included? -- -Mike |
