Robert Beck | 6 Aug 15:18 2006
Picon

Guarddog root login problem

For some reason, I am unable to log in to change my settings in Guarddog from KDE. The dialogue gives me the opportunity several times, then opens as a non-admin users so I can't make any changes; just view what's there. As a workaround, I can go through a terminal as root and it works fine. I uninstalled and reinstalled Guarddog without any change in behavior. Having the problem on my recently installed PCLinuxOS minime .93a. Didn't have the problem with prior versions of PCLinux or with the MEPIS distro I'm running Guarddog on in another slice. Suggestions?

-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys -- and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
Guarddog-user mailing list
Guarddog-user <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/guarddog-user
Mark Neidorff | 6 Aug 15:27 2006

Re: Guarddog root login problem

That is correct behavior.  Guarddog should only modify the firewall rules by 
the root user.  Your method of working with guarddog is the right way to use 
it.  Why didn't it work that way before?  I don't know.  Perhaps the version 
was hacked to allow non-root users to modify the firewall.  

Mark

On Sunday 06 August 2006 09:18 am, Robert Beck wrote:
> For some reason, I am unable to log in to change my settings in Guarddog
> from KDE. The dialogue gives me the opportunity several times, then opens
> as a non-admin users so I can't make any changes; just view what's there.
> As a workaround, I can go through a terminal as root and it works fine. I
> uninstalled and reinstalled Guarddog without any change in behavior. Having
> the problem on my recently installed PCLinuxOS minime .93a. Didn't have the
> problem with prior versions of PCLinux or with the MEPIS distro I'm running
> Guarddog on in another slice. Suggestions?

-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys -- and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
John G Walker | 6 Aug 17:50 2006
Picon

Streaming Flash

I installed Guarddog about a week ago, and it's marvellously easy to
use. I definitely think I did the right thing.

However, I seem to have blocked streaming Flash (ie Flash used as a
live broadcast medium). I can't find any obvious box to check to allow
it through. It's not a high priority (and I use Flashblock normally
anyway) but it would be useful, on those occasions when I want to see
such things, if I didn't block myself from seeing them!

I have a LAN zone as well as internal and external zones, and my
hardware firewall is in the LAN zone,

--

-- 
 All the best,
 John

-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys -- and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
John G Walker | 8 Aug 15:23 2006
Picon

Re: Streaming Flash

On Sun, 6 Aug 2006 16:50:34 +0100 John G Walker
<johngwalker <at> tiscali.co.uk> wrote:

> I installed Guarddog about a week ago, and it's marvellously easy to
> use. I definitely think I did the right thing.
> 
> However, I seem to have blocked streaming Flash (ie Flash used as a
> live broadcast medium). I can't find any obvious box to check to allow
> it through. It's not a high priority (and I use Flashblock normally
> anyway) but it would be useful, on those occasions when I want to see
> such things, if I didn't block myself from seeing them!
> 
> I have a LAN zone as well as internal and external zones, and my
> hardware firewall is in the LAN zone,
> 

I was contacted off-list and recommended to use
http://www.novell.com/test/port_tests.html to test my connection. It
revealed the following:

RMTP Default: Timed Out 21s
RMTP Default: Closed 21s
RMTP Port 80: Success 0.6s
RMTP Port 443: Success 0.6s
RMTPT (Tunneling) Default: Failed 1.6s
RMTPT (Tunneling) Port 80: Success 1.5s
RMTPT (Tunneling) Port 443: Failed 1.3s
RMTPT (Tunneling) Port 1935: Timed Out 20.1s
RMTPT (Tunneling) Port 1935: Closed 20.1s

Port 80 is used for HTTP and port 443 for HTTPS. But I cant identify
anything in the list of protocols in Guarddog that uses port 1935.

Is there any problem in defining my own protocol that opens up port
1935?

Also: what is "Tunneling" and what might the default that timed out be?

So many questions. But I'd rather not be able to connect than act
in ignorance,

--

-- 
 All the best,
 John

-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
John G Walker | 8 Aug 19:14 2006
Picon

Re: Streaming Flash


On Tue, 8 Aug 2006 14:23:05 +0100 John G Walker
<johngwalker <at> tiscali.co.uk> wrote:

 
> Is there any problem in defining my own protocol that opens up port
> 1935?
> 
> Also: what is "Tunneling" and what might the default that timed out
> be?
> 

Funny how, once you formulate your confusions into questions, the
answers can appear a lot easier to get at.

So, to answer my own questions:

I found a technical note from Adobe
(http://www.adobe.com/cfusion/knowledgebase/index.cfm?id=tn_16499)
which states that port 1935 is the port for the Real-Time Messaging
Protocol, used by Flash. So it seems I'm okay in setting that up as a
user-defined protocol.

The port can be altered at the server, so I presume the "default port"
test is a test for whatever the server has defined. Anyway that test
also works if I open port 1935.

"Tunneling", I discovered by trial and error, is (in Guarddog terms)
connecting from the local zone to the internet zone. Port 1935 needs to
be open in both directions.

I learned a lot sorting this out, and it reaffirmed how easy Guarddog
is to configure once you know what you want to do. 

Hope this post helps archive-searchers,

--

-- 
 All the best,
 John

-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
Ed Huisman | 13 Aug 00:49 2006
Picon

Log files

I have Log blocked packets and rejected packets selected.  If there is any logging activity, where do the log files go?  I am running Debian Etch.

-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
Guarddog-user mailing list
Guarddog-user <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/guarddog-user
Rolf Pedersen | 13 Aug 03:07 2006
Picon

Re: Log files

Ed Huisman wrote:
> I have Log blocked packets and rejected packets selected.  If there is 
> any logging activity, where do the log files go?  I am running Debian 
> Etch.
>
> _______________________________________________
> Guarddog-user mailing list
> Guarddog-user <at> lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/guarddog-user
>   

In my installation (Mandriva), there is a KDE Guarddog handbook 
available at the 'Help' button.  In that,

Tip
Packet logs are received by the syslog. Consult the syslog manual page 
for more information.

Here, /etc/syslog.conf, man syslogd, man syslog.conf, etc. contain some 
likely information for specifying a file but I have not desired to 
collect log messages.  I have seen rejection messages interspersed in 
/var/log/messages and /var/log/syslog

Rolf

-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
Ed Huisman | 15 Aug 02:50 2006
Picon

Re: Log files

Rolf Pedersen <rolfpedersen <at> mindspring.com> writes:

> 
> Ed Huisman wrote:
> > I have Log blocked packets and rejected packets selected.  If there is 
> > any logging activity, where do the log files go?  I am running Debian 
> > Etch.
> >
> > _______________________________________________
> > Guarddog-user mailing list
> > Guarddog-user <at> lists.sourceforge.net
> > https://lists.sourceforge.net/lists/listinfo/guarddog-user
> >   
> 
> In my installation (Mandriva), there is a KDE Guarddog handbook 
> available at the 'Help' button.  In that,
> 
> Tip
> Packet logs are received by the syslog. Consult the syslog manual page 
> for more information.
> 
> Here, /etc/syslog.conf, man syslogd, man syslog.conf, etc. contain some 
> likely information for specifying a file but I have not desired to 
> collect log messages.  I have seen rejection messages interspersed in 
> /var/log/messages and /var/log/syslog
> 
> Rolf
> 
> -------------------------------------------------------------------------
> Using Tomcat but need to do more? Need to support web services, security?
> Get stuff done quickly with pre-integrated technology to make your job easier
> Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
> http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
> 

Yeah, I already figured out how to click on the help button, and I looked at
/var/log/syslog and /var/log/messages (both files are empty) as well as read the
manual for syslog.  I don't need guarddog to notify me every time there's a
rejected or blocked packet, but I would like to be able to view a text file with
that info.  Even my router keeps a viewable log file of rejected and blocked
packets.  And yes, even though I have a router, some 'bad' packets still seem to
get through.

-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
Ed Huisman | 15 Aug 03:23 2006
Picon

Guarddog root login problem

I assume you are clicking on the menu selection under 'System'?  Make sure that
the menu selection has you start the program as root instead of as yourself.  To
do this, right click Guarddog and select 'edit item'.  The kde menu editor
should open with guarddog showing.  Make sure you put an x in the 'Run as
different user' box and type 'root' beside Username:.  Save your changes and
close menu editor. Now you should get a prompt to enter your root password and
you should be good to go.  You can also use 'sudo guarddog' (without the '') as
a run command if you have sudo set up.

-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
Ed Huisman | 15 Aug 03:34 2006
Picon

Re: Guarddog root login problem

Ed Huisman <edhuismanster <at> gmail.com> writes:

Sorry, this was meant to be a followup for the other guarddog root login problem.
Just ignore this as I have reposted a follow up where it belongs, this posting
format really sucks.  See http://forums.debian.net/ or
http://www.linuxforums.org/forum/ for how a Q&A forum should be run.

-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642

Gmane