From mike@boobaz.net Tue Aug 15 15:16:01 2000 Received: from mxu1.u.washington.edu (mxu1.u.washington.edu [140.142.32.8]) by lists.u.washington.edu (8.9.3+UW00.05/8.9.3+UW99.09) with ESMTP id PAA17354 for ; Tue, 15 Aug 2000 15:16:00 -0700 Received: from boobaz.net (c1056043-a.sttln1.wa.home.com [24.19.193.36]) by mxu1.u.washington.edu (8.9.3+UW00.02/8.9.3+UW99.09) with ESMTP id PAA09653 for ; Tue, 15 Aug 2000 15:15:59 -0700 Received: from c1056043-a (c1056043-a [24.19.193.36]) by boobaz.net (8.9.3/8.9.3) with ESMTP id PAA20470 for ; Tue, 15 Aug 2000 15:15:58 -0700 Date: Tue, 15 Aug 2000 15:15:58 -0700 (PDT) From: Mike X-Sender: mike@c1056043-a.sttln1.wa.home.com To: UW Linux Group Subject: Re: pocket linux (was Never mind) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Yeah, Script Kiddie output is a helpful performance tweak: # nmap -oS - -sF -p 22 128.208.94.2 Starting nmap V. 2.50 by fyodor@insecure.org ( www.insecure.org/nmap/ ) |nt3r3stiNg p0rts 0N f0obar (ww.xx.yy.zz): POrT Stat3 sErv!ce 22/tcp open $sh Nmap run c0mpleted -- 1 1P AddrE$s (1 hO$t up) scanned in 1 s3cond --------------------------- -=<(| mike@boobaz.net |)>=- On Tue, 15 Aug 2000, R. David Whitlock wrote: |Also, check out gibraltar, a debian based, all on one bootable cd, never |touch the hard drive style firewall. We just went through the whole |"Should we include sniffers, packet manipulation tools,etc" type |discussion, because the author had similar concerns about a legitimate |security tool being used for other than honorable intentions. | |My point, whch she agreed on, was that any serious attacker is going to |have at their disposal some sort of root kit or whatever, which would |include anything not included by default on gibraltar. So why make it |harder for genuine sysadmin people to use those same tools? We cannot, in |tool design, make judgements about what we will provide based on fear of |what we give the enemy, i think. Attackers will always have access to |sysadmin tools, as well as others that may not be as well known to real |system administrators. Consider NMAP, for example. It's used by both |sides of the fence, and although it is 'optimized' for certain malicious |uses, it's just as important to sysadmins for those very reasons... | |Delicious, isn't it? | |-D | Work like you don't need money, | Love like you've never been hurt, | Dance like nobody's watching. | |On Tue, 15 Aug 2000, Adam Stenseth wrote: | |> |> Pocket linux is kind of neat. It stores quite a bit on 1 floppy. |> |> My guess, however, with mike being 1337 as he is, had |> trinux. (www.trinux.org) |> |> I thought LOAF was fun(loaf.ecks.org) tho not terribly useful. |> |> www.toms.net/rb/ has several good links. |> |> As for the worthiness of them... Well, that depends on what you want to |> do. Floppy-bootable linux dists have all sorts of insidious applications, |> if they fall into the wrong hands. But they can also be terribly useful |> for recovery/repair and, in certain situations, IDS/IH. |> |> And of course, no one here would ever use one of them for anything but the |> most benevolent purposes. ;] |> |> -adam |> |> |> On Tue, 15 Aug 2000, Doug McLean wrote: |> |> > Date: Tue, 15 Aug 2000 14:32:31 PDT |> > From: Doug McLean |> > Reply-To: linux@u.washington.edu |> > To: UW Linux Group |> > Subject: Never mind |> > |> > I am a total retard. Forget my last email. I was not reading the |> > instructions as thoroughly as I should. That's what you get for reading |> > debian instructions at work...er..I mean someplace far away... (yeah, that's |> > the ticket).... |> > |> > So what about Pocket Linux? I once saw Mike Hornung with one of those. Is |> > it worth it? |> > ________________________________________________________________________ |> > Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com |> > |> > |> |> |> |> | .