James Stephens

January 23, 2006

Non-Root Control Of Network Devices Under Linux With System-Config-Network

Filed under: Linux, Unix Security — James Stephens @ 4:17 pm

This post details how to give a non-root user control over the network devices.
(more…)

January 16, 2006

IP/ARP Spoofing, TCP/IP Session Hijacking, Port Forwarding

Filed under: Unix Security — James Stephens @ 3:44 pm

A couple of years ago I gave a talk at Princeton University entitled “Summertime And The Spoofing Is Easy”.
(more…)

January 12, 2006

Iptables – Example Firewall Rulesets

Filed under: Iptables, Unix Scripts, Unix Security — James Stephens @ 10:46 am

Two example iptables firewall rulesets are provided. Both are designed for a single-homed host and utilize the stateful inspection feature of iptables for all connections.
(more…)

January 10, 2006

Security In X Windows

Filed under: Unix Security — James Stephens @ 10:03 pm

Imagine you are the administrator for a site that wisely doesn’t allow telnet in, but does allow ssh. What I am going to explain now is a way in which your security can potentially be seriously compromised.
(more…)

Some Security Issues With Telnet

Filed under: Unix Security — James Stephens @ 9:59 pm

Let’s discuss a few issues related to telnet. People are starting to get the message that it is insecure, and I hope this webpage will help. Some of the issues are a little more subtle that you might think.

(more…)

A Security Weakness In NFS

Filed under: Unix Security — James Stephens @ 7:29 pm

When a Network File System (NFS) client host wants to access a remote file or directory, its operating system sends a request to the NFS server. The request specifies, among other things, a file identifier, the operation (read, write, change permission, etc.), and the identity of the user on whose behalf the operation is to be done.
(more…)

Powered by WordPress

of StatCounter Code -->