Re: [ILUG] IIS problems

From: John Moylan (john at domain nua-tech.com)
Date: Wed 26 Sep 2001 - 17:48:17 IST

• Next message: Rick Moen: "Re: [ILUG] Sound file conversion"
• Previous message: silvan delaney: "Re: [ILUG] Sound file conversion"
• In reply to: Wesley Darlington: "Re: [ILUG] IIS problems"
• Next in thread: John McCormac: "Re: [ILUG] IIS problems"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

Maybe I'm a bit late on this one..(working on the digest).. port sentry have this - although it is not recommended.

John

On Wed, Sep 26, 2001 at 04:20:37AM -0400, Wesley Darlington wrote:
> Date: Wed, 26 Sep 2001 04:20:37 -0400
> From: Wesley Darlington <wesley at domain yelsew.com>
> To: ilug at domain linux.ie
> Subject: Re: [ILUG] IIS problems
>
> On Tue, Sep 25, 2001 at 07:30:18PM +0100, David Murphy wrote:
> > Quoting <3BB0CC2C.9040607 at domain esatclear.ie>
> > by Paul Kelly <longword at domain esatclear.ie>:
> > > How can it be illegal? They requested the machine deinstallation
> > > program from your web server. And you've got the Apache logs to
> > > prove it.
> > I don't believe "They asked for it" will stand up in court.
>
> Probably right. Much better to format their drives so all
> trace of your activity is removed. Dead boxes tell no tales.
> Use https if it's there to lessen the likelihood of IDSes (*)
> noticing.
>
> Thought - services on ports traditionally have warnings about who
> can connect: telnet and ftp for example. What would the implications
> of an HTTP X- header to the effect that "unauthorised personse should
> disconnect and never reconnect; if you're not sure if you're authorised
> then you are not." ...? Where might one put such a banner?
>
> Tongue-ily in cheek,
> Wesley.
>
> (*) Although the idea that somebody with nimda or code-red on their
> network might have an IDS (or other source of reasonably tamper-
> proof logs) beggars belief! :-)
>
> --__--__--

-- 
___________________________________
John G. Moylan
PGP Key - http://www.nua-tech.com/john/John-Moylan-PUB-KEY.asc
************************************************************
The information in this e-mail is confidential and may be
legally privileged.  It is intended solely for the addressee.
Access to this e-mail by anyone else is unauthorised.  If
you are not the intended recipient, any disclosure, copying,
distribution, or any action taken or omitted to be taken in
reliance on it, is prohibited and may be unlawful.
*************************************************************

• Next message: Rick Moen: "Re: [ILUG] Sound file conversion"
• Previous message: silvan delaney: "Re: [ILUG] Sound file conversion"
• In reply to: Wesley Darlington: "Re: [ILUG] IIS problems"
• Next in thread: John McCormac: "Re: [ILUG] IIS problems"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:12:18 GMT