[techtalk] My bad NT day

Angela Nash Chick at the-nashes.net
Sat May 19 10:42:19 EST 2001 

If the second box running SP2 was hacked, check your permissions.  Sounds
like you have a configuration problem somewhere.

We run OpenBSD as our firewall, and have for a while.  It's easy to setup
and use and works very well.  The syntax for configuring it is very easy.
Our OpenBSD system also handles our NAT translation.  We have 32 public IPs
that we translate to 32 private IPs.  It also runs Snort intrustion
detection, Apache for our web, and soon qmail for mail.

The only other system I'd run as a firewall is Debian with a cron job set to
do an apt-get update/upgrade off the security server every night.  But, if
you want a real hassle free system check out OpenBSD.  Compare the number of
exploit fixes released for it compared to the Linux systems.  They do a lot
of proactive work.

Jason

-----Original Message-----
From: Scott [mailto:scott at talon.net]
Sent: Saturday, May 19, 2001 7:55 AM
To: Techtalk
Subject: [techtalk] My bad NT day


So, yesterday was not a good NT day for me.  First off, the server that I
develop on at work had Service Pack #2 installed on it Thursday.  Friday
morning and IIS and SQL Server stopped working.  The machine can browse
the web and that is about it.  Can not see other machines in the network
and is basically a glorified web browser at the moment.

I also have a Win 2K machine at home doing Internet Connection Sharing on
my 56k modem.  I come home to find it hacked into.  This machine is also
running SP2 and all the MS security and hot fixes that apply.  I run IIS
on it for fun and the modem to share internet, that is it.  They managed
to break into the machine and do some damage.  It is now in total safe
mode-powered off.

I set up Linux to do my internet connection sharing for now.  Does anyone
have experience using OpenBSD as a firewall?  Or even, securing up a
decent Linux box to share a modem connection and do firewall chores.

Thanks,

-sap


_______________________________________________
techtalk mailing list
techtalk at linuxchix.org
http://www.linux.org.uk/mailman/listinfo/techtalk

More information about the Techtalk mailing list