Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Mon 24 Nov 2014, 13:57
All times are UTC - 4
 Forum index » Off-Topic Area » Security
Interesting changes
Post new topic   Reply to topic View previous topic :: View next topic
Page 1 of 2 [24 Posts]   Goto page: 1, 2 Next
Author Message
Smithy


Joined: 12 Dec 2011
Posts: 461

PostPosted: Thu 14 Mar 2013, 06:59    Post subject:  Interesting changes  

Just checked grc, same puppy and exactly same setup for a long time.
Now these ports are changed from stealth to closed. Previously all stealth.
Quite a neat array of blue.
Failed text.jpg
 Description   
 Filesize   29.94 KB
 Viewed   608 Time(s)

Failed text.jpg

closed not stealthed.jpg
 Description   
 Filesize   140.29 KB
 Viewed   625 Time(s)

closed not stealthed.jpg

Back to top
View user's profile Send private message 
nooby

Joined: 29 Jun 2008
Posts: 10557
Location: SwedenEurope

PostPosted: Thu 14 Mar 2013, 07:18    Post subject:  

Ooops so what does that mean?
_________________
I use Google Search on Puppy Forum
not an ideal solution though
Back to top
View user's profile Send private message 
Flash
Official Dog Handler


Joined: 04 May 2005
Posts: 11157
Location: Arizona USA

PostPosted: Thu 14 Mar 2013, 08:41    Post subject:  

Smithy forgot to mention that those are the results of a Shields UP test.
Back to top
View user's profile Send private message 
greengeek

Joined: 20 Jul 2010
Posts: 2668
Location: New Zealand

PostPosted: Thu 14 Mar 2013, 10:05    Post subject:  

What browser are you using? My Seamonkey just suddenly went into a "lift my skirts up and have no security" mode. Been tight for a couple of years then suddenly reset itself to being "wide open".
Back to top
View user's profile Send private message 
Smithy


Joined: 12 Dec 2011
Posts: 461

PostPosted: Thu 14 Mar 2013, 10:21    Post subject:  

Yes Flash, forgot to mention that.

Well Nooby, when "business" comes knocking on the doors. it receives a message (when blue) that "we are closed", when green, it is like the door is covered in ivy like in a secret garden.

Greengeek, using firefox, funny that your seamonkey has gone native, mine's got the kilt on but no undies! How did you fix it?

Pinging prevention code is fine.
Back to top
View user's profile Send private message 
greengeek

Joined: 20 Jul 2010
Posts: 2668
Location: New Zealand

PostPosted: Thu 14 Mar 2013, 11:13    Post subject:  

Smithy wrote:
mine's got the kilt on but no undies!
<chuckle> That's funny. Great mental image. Smile

I had to go through all the preferences settings and return things to the way I previously had them (no passwords, no updating etc etc). Also noted one of the fonts had changed size, so maybe I just got a corrupted config file somehow...
Back to top
View user's profile Send private message 
Smithy


Joined: 12 Dec 2011
Posts: 461

PostPosted: Thu 14 Mar 2013, 11:33    Post subject:  

Ha.
Just remembering, it was Puppy 431 that I ran through shield sup.
It gave a true stealth rating.
The firewall state tray is now not coming up in thin slacko after a save.
Could do with stealthing these ports....
Back to top
View user's profile Send private message 
nooby

Joined: 29 Jun 2008
Posts: 10557
Location: SwedenEurope

PostPosted: Thu 14 Mar 2013, 13:37    Post subject:  

Will be interesting to follow this thread.

Does not GRC warn taht one need to set the Router so it
allow GRC to test the OS and not the Router?

But I know nothing.

_________________
I use Google Search on Puppy Forum
not an ideal solution though
Back to top
View user's profile Send private message 
Smithy


Joined: 12 Dec 2011
Posts: 461

PostPosted: Thu 14 Mar 2013, 18:10    Post subject:  

What Puppy you running Nooby?
Go here and try probe all ports, see what you get.
https://www.grc.com/x/ne.dll?bh0bkyd2
Back to top
View user's profile Send private message 
Adagio

Joined: 06 May 2011
Posts: 126
Location: TerraAustralis

PostPosted: Thu 14 Mar 2013, 20:58    Post subject:  

Your Connection to Our Web
Server is Probably 'Proxied'

What's a 'Proxy' ?

A 'Proxy' is an intermediate computer that 'intercepts' a request made for an Internet resource, then reissues that request on behalf of the intercepted computer.

For example — as happened here just now — your computer's web browser requested a resource (this page) from the grc.com web site. But your browser's request was intercepted by a 'transparent' intermediate proxying computer — probably belonging to your Internet service provider. That proxying computer, in turn, forwarded the request to grc.com's web server.

Our security testing technology detected that this was happening and responded to the proxy with this special 'intercept' page so that the proxy would, in turn, return it to your web browser.

Because none of this is usually very important for normal web surfing, such proxies are termed 'transparent'. But the problem is that they are not transparent enough to allow reliable security testing. Since we were connected to the proxy, rather than to your computer, we are unable to accurately analyze the security of your computer's connection to the Internet. (We could tell you all about the proxy's security, but that's a subject for another page.)

Internet service providers often use proxies to improve the subjective performance of their network for their customers. By locally storing copies of often-requested web resources (like all the various bits and pieces of Amazon's web site) web pages assemble much more quickly. Most people are never aware of their existence.

The ShieldsUP! system incorporates technology designed to circumvent many common web browser proxies so that most of our visitors never encounter this special interception page. This built-in circumvention technology is one of several reasons why ShieldsUP!'s tests are often more accurate than other web-based online security tests.

However, in this case, it appears that our automatic proxy circumvention system has failed to determine your machine's true IP address, so the results of further tests would not be trustworthy.

The worrisome header contained in your request is:

Via: 95.93.12.15

The presence of this header is indicative of an intermediate proxy, as discussed above. We are unable to bypass this proxy, since even your browser's secure SSL connections are being intercepted. If you are able to disable your browser's use of this proxy we'll be able to check your system, but until then we are unable to proceed.

*****************
I'm happy with this. Cool
Back to top
View user's profile Send private message 
nooby

Joined: 29 Jun 2008
Posts: 10557
Location: SwedenEurope

PostPosted: Fri 15 Mar 2013, 02:08    Post subject:  

Smithy wrote:
What Puppy you running Nooby?
Go here and try probe all ports, see what you get.
https://www.grc.com/x/ne.dll?bh0bkyd2


I am on slacko 5.4 using FF17 and the first 1056?
Says I am all stealth but that I should not allow ping.
So they recommend me to go into the router and change
it so it does not allow ping. I have forgotten the username
and password again. i never remember these. Use them
too seldom to remember.

_________________
I use Google Search on Puppy Forum
not an ideal solution though
Back to top
View user's profile Send private message 
Smithy


Joined: 12 Dec 2011
Posts: 461

PostPosted: Fri 15 Mar 2013, 02:45    Post subject:  

Ok.
Well there is some code if you wanted to block pinging.
Code:
echo 1 > /proc/sys/net/ipv4/icmp_echo_ignore_all

To make it permanent, add the line to /etc/rc.d/rc.local
Back to top
View user's profile Send private message 
nooby

Joined: 29 Jun 2008
Posts: 10557
Location: SwedenEurope

PostPosted: Fri 15 Mar 2013, 04:10    Post subject:  

Thanks but I know now why I have not set it up before.
My ISP will cut the line to my home if I don't allow them
to ping me each 20 minutes.

I had that problem some year ago I lost connection all teh time
due to them did not see me when they pinged me.

Sad that they set it up that way. But it is nothing I can change
they treat all of us that way and them are one of the bigger actors
in several countries too.

_________________
I use Google Search on Puppy Forum
not an ideal solution though
Back to top
View user's profile Send private message 
Smithy


Joined: 12 Dec 2011
Posts: 461

PostPosted: Fri 15 Mar 2013, 11:24    Post subject:  

Best not to mess with it then Nooby!

Reading a bit more, Kapersky and other businesses don't see any point in stealthing, plus the 'ol Linux guys think it is "bad manners" to do it and partly why the internet is getting bunged up!

I guess BK made it so that when it needs to open up it will and close when it doesn't need to.
@Adagio, that's cool as long as you trust your proxy.
Back to top
View user's profile Send private message 
rcrsn51


Joined: 05 Sep 2006
Posts: 9259
Location: Stratford, Ontario

PostPosted: Fri 15 Mar 2013, 11:46    Post subject:  

Stealthing is a feature provided by some firewall products. I'm surprised that the Linux firewall in Puppy appears to do it.

Smithy: Is your Puppy machine behind a router? Does it have a local IP address like 192.168.x.y?
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 1 of 2 [24 Posts]   Goto page: 1, 2 Next
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Off-Topic Area » Security
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0833s ][ Queries: 13 (0.0049s) ][ GZIP on ]