headers
ciso | 1 Apr 2003 08:00
Favicon

Animal Rights Hacktivism - They Got One


It would appear that HALL exists.

www.nmrc.org  has been defaced by HALL

Concerned about your privacy? Follow this link to get
FREE encrypted email: https://www.hushmail.com/?l=2 

Big $$$ to be made with the HushMail Affiliate Program: 
https://www.hushmail.com/about.php?subloc=affiliate&l=427
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Permalink | Reply | 0 comments |
headers
nee cee | 1 Apr 2003 01:40
Picon

open proxy

joost

if you are talking about open relays the you need to make a couple of 
changes (notes 4) in the notes.ini file. you need to add the following 
lines

SMTPMTA_REJECT_RELAYS=1
SMTP_OCH_REJECT_SMTP_ORIGINATED_MESSAGES

in notes 5 you need to edit the server document to stop relays. i think 
it is on the smtp page

nc

*****************
	"Joost Ernest" <jernest <at> chello.nl>
	30/03/2003 08:31 PM
		 
		 To: <security-basics <at> securityfocus.com>
		 cc: 
		 Subject: open proxy

Hello all, 

I have a question regardin

Hello all, 

I have a question regarding to "open proxy". We are using Domino server
as our mail server in a w2k server environment. A week ago we started to
(Continue reading)

Permalink | Reply | 0 comments |
headers
Anders Reed Mohn | 1 Apr 2003 11:03

Re: IE5/IE6 Security Updates?


> Is it worth the time and effort to install every hotfix, security update
for
> IE5 and IE6 or should I rather just wait until a Cumlative patch/Service
> Pack comes out and install those.

That is a _very_ subjective question.
Noone can answer that but you.
There are a heap of factors that come into play when you want
to assess the cost of doing so, vs. leaving it unpatched.
It's all a matter of cost, so it takes a bit of thinking and counting...

The first rule is anyway:  don't patch unless it's broken.
If a patch provides a fix that is totally unecessary for you, then don't
apply it.
(Unfortunately, this is less often the case with internet-security related
pacthes,
than with other SW-bug patches.)

You could read this good paper:
http://www.usenix.org/events/lisa02/tech/beattie.html
for an example approach to answering your question.
(Thanks, btw, to whoever it was that first posted this link)

Cheers,
Anders :)

-------------------------------------------------------------------
SurfControl E-mail Filter puts the brakes on spam,
viruses and malicious code. Safeguard your business
(Continue reading)

Permalink | Reply | 0 comments |
headers
Anders Reed Mohn | 1 Apr 2003 11:12

Re: open proxy


> E-mail. I know how to configure this in Exchange but i don't know how i
> can arrange this with Domino server. 
> Any suggestions en url's would be appreciated! 

This is a question you should "ask" the Domino user manual first.
The answer is in there, at least if you are using R5.

Then try Google, I am 100% sure you'll find something there too.

The answer is also to be found at www.dominozone.net and
www.lotus.com.

Cheers,
Anders :)

-------------------------------------------------------------------
SurfControl E-mail Filter puts the brakes on spam,
viruses and malicious code. Safeguard your business
critical communications. Download a free 30-day trial:
http://www.securityfocus.com/SurfControl-security-basics
Permalink | Reply | 0 comments |
headers
Devdas Bhagat | 1 Apr 2003 12:32
Picon

Re: open proxy

On 30/03/03 12:31 +0200, Joost Ernest wrote:
> I have a question regarding to "open proxy". We are using Domino server
> as our mail server in a w2k server environment. A week ago we started to
> receive a-mail from a Dutch ISP dat our mailserver has been listed in an
> Open Proxy Database. As a result of this we can't send e-mail at all... 
You have an open proxy on your network. Possibly ISA? Have the proxy
accept requests *only* from your ip block.
With squid (http://www.squid-cache.org), I would do:
acl mylan src 192.168.1.0/24 #This is the netblock for my local LAN
http_access allow mylan #Permit my LAN users to use squid
http_access deny all #Deny everyone

> I have started to block some ports explicitly (135, 139, 443, 1080, 
> etc..) I also read some articles about this subject in which was written
First rule of firewalling: 
Block everything,
Open as needed.

> that i should use Authentication for every user that wants tos end
> E-mail. I know how to configure this in Exchange but i don't know how i
> can arrange this with Domino server. 
You need to authenticate on the basis of IP addresses, or username
password pairs.

http://www.google.com/search?q=smtp+auth+domino

HTH
Devdas Bhagat

-------------------------------------------------------------------
(Continue reading)

Permalink | Reply | 1 comment |
headers
Stephen Entwisle | 1 Apr 2003 19:02
Picon
Favicon

Administrivia: Article Announcements and List Sponsorship

Hey Folks,

First, I just wanted to take a moment to update you on the discussion we
were having last week about the SecurityFocus article announcements. First
of all, let me thank all of you who e-mailed me with your feedback. If
there was ever any doubt about the commitment of Security-Basics
subscribers to the well-being of the list, this discussion alleviated them
pretty soundly. As for the results of that discussion: the overwhelming
majority of respondents made it clear that they like the SecurityFocus
article announcements just as they are. The one caveat being that many
people requested a consistent subject header so that the messages can be
filtered if the user so desires. So, I will continue to post SecurityFocus
article announcements to the list with the subject header "SecurityFocus
Article Announcement" (without the quotes).

Second, you may have noticed that Security-Basics messages now contain
short text advertisements at the bottom of the message. It has emerged
over the past few months that if SecurityFocus is to continue to provide
the many cost-free services it currently offers, that it must become
financially self-sufficient. This does not mean that the SecurityFocus Web
site, and its associated services, is going to become profit driven;
however, it does mean that we will have to generate enough revenue to
sustain our operations.

With this in mind, we have started to offer sponsorship of five of our
mailing lists, including Security-Basics. We will do this in such a way
that the sponsorship does not intrude upon the delivery, readability, or
integrity of Security-Basics messages and discussions. We will only offer
sponsorship to security-related vendors. Perhaps most importantly, I want
to stress that the sponsorship will not affect any decisions regarding the
(Continue reading)

Permalink | Reply | 0 comments |
headers
Jose Celestino | 1 Apr 2003 19:14
Picon
Gravatar

Re: Email Encryption Between Servers

Words by Al Cooper [Mon, Mar 31, 2003 at 10:44:13AM -0700]:
> We are attempting to set up secure e-mail with our partner companies to
> comply with the upcoming HIPAA requirements.  I would like to find a way to
> encrypt all e-mail going between our mail server and our partners.  We are
> using Exchange.  Some of our partners are also using Exchange and some are
> using other SMTP servers.
> 
> Is there a way to automatically force all e-mail between our two e-mail
> servers (either Exchange to Exchange or Exchange to SMTP) to be encrypted
> then decrypted on arrival with no end user intervention?   If there are,
> what affect, if any will these encryption methods have on our overall
> network security.
> 

Yes. Search VPN.

--

-- 
Jose Celestino | http://xpto.org/~japc/files/japc-pgpkey.asc
----------------------------------------------------------------
"Don't summarize. Don't abbreviate. Don't interpret." -- djb

-------------------------------------------------------------------
SurfControl E-mail Filter puts the brakes on spam,
viruses and malicious code. Safeguard your business
critical communications. Download a free 30-day trial:
http://www.securityfocus.com/SurfControl-security-basics
Permalink | Reply | 0 comments |
headers
Robinson, Sonja | 1 Apr 2003 19:27

RE: Email Encryption Between Servers

We evaluated three enterprise solutions and bid them out.  I believe that
once e-mail leaves your network using exchange it is automatically sent
clear text, hence the need for encryption.  I am not an exchange
administrator so...  And if you are sending PHI or GLBA I would send in no
less then 128-bit anyway.  

There are a number of issues you need to think of when evaluating encryption
including, logging/reporting, forensics & investigations, ease of use for
users, ease of administration, key exchanges, can I force my business
partners to buy the same product/hardware/service, send to anyone
capability, what constitutes due diligence, cost, etc.  

I am not endorsing any one vendor and these are not necessarily the opinions
of my employer and should not be construed as such.

Sonja Robinson, CISA
Network Security Analyst
HIP Health Plans
Office:  212-806-4125
Pager: 8884238615

-----Original Message-----
From: Al Cooper [mailto:alc <at> 2wh.com] 
Sent: Monday, March 31, 2003 12:44 PM
To: 
Subject: Email Encryption Between Servers

We are attempting to set up secure e-mail with our partner companies to
comply with the upcoming HIPAA requirements.  I would like to find a way to
encrypt all e-mail going between our mail server and our partners.  We are
(Continue reading)

Permalink | Reply | 1 comment |
headers
Net Shark | 1 Apr 2003 19:46

Re: Email Encryption Between Servers

hi there,
Try using a Network layer encryption solution , like IPsec.
It would create a secure connection (VPN tunnel) between your mail server,
and
your partners's endpoint (it would require sysadm intervention in your
partners's networks).
Checkout MS papers about IPsec, they got loads of documentation as it is
fully suported by
win2k (it's a proposed standard to IETF).

At a higher level you can choose someting like PGP, but this would require
user intervention.

Alex

----- Original Message -----
From: "Al Cooper" <alc <at> 2wh.com>
To: <security-basics <at> securityfocus.com>
Sent: Monday, March 31, 2003 6:44 PM
Subject: Email Encryption Between Servers

> We are attempting to set up secure e-mail with our partner companies to
> comply with the upcoming HIPAA requirements.  I would like to find a way
to
> encrypt all e-mail going between our mail server and our partners.  We are
> using Exchange.  Some of our partners are also using Exchange and some are
> using other SMTP servers.
>
> Is there a way to automatically force all e-mail between our two e-mail
> servers (either Exchange to Exchange or Exchange to SMTP) to be encrypted
(Continue reading)

Permalink | Reply | 0 comments |
headers
Garbrecht, Frederick | 1 Apr 2003 19:52

RE: Email Encryption Between Servers

Since you're doing this to comply with HIPAA, then you and your partner
companies most likely already have firewalls in place; why don't you set up
a gateway to gateway vpn between your company and each of your partners to
provide transparent encryption services for your smtp traffic.  You can set
up the appropriate routing and FW rules so that only the mail going to your
partners gets routed through the encrypted tunnel, the rest would get sent
out as usual.  Decryption would occur transparently on the distal gateway,
and then the unencrypted email would then be passed to the partners smtp
server for delivery.  You can certainly do this with Checkpoint and PIX; you
can probably also rig something up using the Windows native ipsec, although
I've never done this.

Good luck,
Fred
-----Original Message-----
From: Al Cooper
To: security-basics <at> securityfocus.com
Sent: 3/31/03 12:44 PM
Subject: Email Encryption Between Servers

We are attempting to set up secure e-mail with our partner companies to
comply with the upcoming HIPAA requirements.  I would like to find a way
to
encrypt all e-mail going between our mail server and our partners.  We
are
using Exchange.  Some of our partners are also using Exchange and some
are
using other SMTP servers.

Is there a way to automatically force all e-mail between our two e-mail
(Continue reading)

Permalink | Reply | 1 comment |

Gmane