---

Contributor dreamwvr@dreamwvr.com
Q = Question A = Answer
Q > If I allow POP 3 thru the firwall does it open the possibility of compromise?
A > Yes as POP 3 send the usrname and passwd in clear test it is a security problem Qualcomm APOP src code should be still available and runs on Solaris smoothly. It is located at ftp://ftp.qualcomm.com/eudora/servers/unix/popper/
Q > How do I remove the .lock on the fwui when its sticks me with the ro version?
A > rm the manage.lock in the /fw/log directory.
Q > How do I allow a RPC service with ARS Remedy through the Firewall?
A > Edit /etc/fw/lib/fwui_head.def to alllow it over TCP uncommenting #define RPC_OVER_TCP.
Q > What do I need to do to install Firewall 1 on Solaris 2.6?
A > You need to get the 3.0b release of Firewall 1.
Q > How do I set up Firewall 1 to allow ssh incoming?
A > Insert a rule to accept tcp flow to port 22 which is the port for ssh. Remember to create a dedicated network separate from the DMZ. It is dedicated to the SSH server and blocks all protocols other than ssh. Then Bolt down the access to this server adding advanced authentication such as OPIE or Smart Cards.
Q > Where might one locate a free RADIUS server for Solaris 2.5.x?
A > Check out RADIUS


Here Are Some Important *NIX Resources to Know About and Use
================================================
Contributor dreamwvr@dreamwvr.com
Q > Where can I download the latest *nix commercial and public patches?
A > Sun patches The Sun patches are here
A > SGI patches The SGI patches are here
A > FreeBSD The FreeBSD patches are here
A > NetBSD The NetBSD patches are here
A > MkLinux, Mac MkLinux, Mac patches are here
A > Linux, Other Linux, Other patches are here
Q > Where can I locate *NIX compiler and development Tools?
A > GNU gcc GNU gcc
A > Perl Perl
A > Perl libs Perl libs
Q > Where do I find Supplementary Security Programs and Tools
A > Tripwire Tripwire
A > Xinetd Xinetd
A > ssh ssh
A > ssh_2 ssh_2
A > rdist/sdist rdist/sdist
A > logdaemon logdaemon
A > tcp_wrappers tcp_wrappers
A > Pidentd Pidentd
Q > Where can I locate Additional adm Programs and Tools relevant to *NIX?
A > traceroute traceroute
A > tcsh tcsh
A > top top
A > SNMP SNMP
A > Mon Mon
A > PGP PGP
A > swatch swatch
Q >Where Should I go to find the latest versions of common inet services?
A > BIND BIND
A > DHCP DHCP
A > INN INN
A > POP POP
A > NTP NTP
A > NTP_2 Imap
A > Imap_2 IMAP_2
A > Sendmail Sendmail
A > and DB and DB
A > WU-FTPd WU-FTPd
A > Apache HTTPd Apache HTTPd">Apache HTTPd
A > Squid proxy Squid Proxy
A > Squid Proxy_2 Squid Proxy_2
Q >Where do I locate Special mail programs and tools?
A > pine pine
A > elm elm
A > metamail metamail
A > Majordomo Majordomo
A > procmail procmail
Q > Where do I get Specialized Web Programs and Tools?
A > wwwpass2 wwwpass2
A > wwwstat wwwstat
A > analog analog
analog_2
A > access_watch access_watch
A > wwwcount wwwcount
A > AFP et al AFP et al AFP et al
A > htgrep htgrep
A > Lynx Lynx
Q > Where do I obtain Misc Security Related Tools /etc?
A > ISP Tools ISP Tools
A > Solaris 2.5 binaries Solaris 2.5 binaries
A > Solaris 2.5 binaries_2 Solaris 2.5 binaries_2
A > SGI Freeware [includes DB 1.85 with IRIX patches] SGI Freeware
A > SSH in pkgadd format SSH in pkgadd Format
A > SSH clients for Windows (3.1, 95, NT) and Macintosh SSH clients for Windows (3.1, 95, NT) and Macintosh
A > misc security misc security

Contributor greg_polanski@adc.com
Q > FW-1 3.0b log view Crashes in Common Desktop (CDE), and Solaris 2.6.
A > Put a copy of libXm.so.3 from Solaris 2.5.x into $FWHOME/clients/lib. Such as /usr/dt/lib/libXm.so.3 from CDE v 1.02 of Solaris 2.5.1

---

VIEWSLETTER