What is the difference between PAM & Kerberos & SELinux & IPTables?
I am unable to create a directory as an anonymous user using FTP.
There is a server without any IPtables defense ACCEPT all..
There could be custom applications on this server.
If we should need to harden this server with strict IPtables rules, we have to find out by hand that which app uses which dst/src port/protocol.
Question: are there any scripts that can help collecting these informations from a running machine?
I want to ask
What is the difference between ipfw (FreeBSD) and iptables (Linux)?
Can they do the same function?
I am curious about this since I want to do actions similar to ipfw, but because I am using Ubuntu, the only available option is iptables I think.
I just noticed an entry in /etc/sysconfig/iptables along the lines of -A INPUT -p tcp -m tcp --dport 138 -j DROP
I am not so sure why there has to be two switches here for matching protocol TCP, that is, -p tcp and -m tcp. Is there any difference between them?
Up until now we have disabled SELinux as our Standard Operating Procedure -- before you tell me off, I know.
I've got a Kerberos v5 server set up on a Linux machine, and it's working very well when connecting to other hosts (using samba, ldap or ssh), for which there are principals in my kerberos database.
Can I use kerberos to authenticate against localhost though? And if I can, are there reasons why I shouldn't? I haven't made a kerberos principal for localhost.
i've been having issues where calls to the LogonUser Windows API function is falling back to NTLM authentication, rather than using the preferred, default, Kerberos authentication.
Researching the problem, a guy has a suggestion:
The thing to do is to figure out why the code is using NTLM instead of
Kerberos in the first place since Kerberos is the default and to try to see
if it can be
I'm currently trying to set up an integrated Kerberos V/LDAP system for authentication/authorization.
i find this similar thread but don't work:
my environment as follows:
Computer A has two network interfaces:eth0(192.168.42.67),eth1(192.168.110.2), with MySQL client installed,selinux disabled.
Computer B has only one network interface:eth0(192.168.110.4), with MySQL Ser