 Quote:
|
Originally Posted by Marshac
if your mail server only communicates with clients on the local subnet, then why would spoofing a DNS entry matter? Maybe Laurence can fill me in 
So far my server ('kitchen'... what are you cooking?) hasn't been hax0red yet.... it's running Win2k3, Exchange 2k3, and BlueDragon (ColdFusion/JSP...none of that PHP for me....bleh)
Ever try tripwire?
I know that as soon as I hit the post button, the security log on my server will fill up 
Edit: is your network at your house (ie: 100% yours), or is it shared with other people? perhaps someone poisoned your ARP table and performed a man-in-the-middle attack? Just a thought |
Didn't see your post Marshac, geez, reading it I feel like I'm studying for my test again!
I highly recommend tripwire as well.
BMJ, your response was well written, that's a story I'll have to share at work!
You could get Draconian and use SUDO for everything... 
Out of ignorance, since I'm more of a high level guy, how many password characters will your OS support? Some flavors will only recognize/encrypt 8 or even 5 characters and use weak algorithms, so while you may have a 14 character password with letters, numbers and special characters, the bad guys only have to solve the first part.
So you going to set up a DMZ?
|