[WBEL-users] Bastille on Whitebox
Andy
industrial_soup@dynacomp.net
Mon, 28 Jun 2004 08:06:53 -0400
I'm familiar with APF, great firewall. In fact, I have it running on a
couple of servers myself. However, Bastille Linux is much more than a
firewall, it provides user shell hardening, process/resources hardening
and much much more. On top of that it gives you 2-3 paragraphs of
explanation of what and why its doing it.
You can use it with APF if you want, just don't install the Bastille
Firewall.
David Overholser wrote:
>Just an FYI, we use APF firewall on our servers and it works great on
>Whitebox and Redhat. There is step by step instructions for installing at
>the whiteboxforum.com under Security. Give it a try, it even has an
>Anti-Dos program built in.
>
>David Overholser
>
>
>---- Original Message -----
>From: <whitebox-users-request@beau.org>
>To: <whitebox-users@beau.org>
>Sent: Sunday, June 27, 2004 1:00 PM
>Subject: Whitebox-users digest, Vol 1 #285 - 4 msgs
>
>
>
>
>>Send Whitebox-users mailing list submissions to
>>whitebox-users@beau.org
>>
>>To subscribe or unsubscribe via the World Wide Web, visit
>>http://beau.org/mailman/listinfo/whitebox-users
>>or, via email, send a message with subject or body 'help' to
>>whitebox-users-request@beau.org
>>
>>You can reach the person managing the list at
>>whitebox-users-admin@beau.org
>>
>>When replying, please edit your Subject line so it is more specific
>>than "Re: Contents of Whitebox-users digest..."
>>
>>
>>Today's Topics:
>>
>> 1. Re: SendMail Gateway (Johnny Hughes)
>> 2. Bastille on Whitebox (Andy)
>> 3. Re: Downloading ISO 2 (Daniel J. Summers)
>> 4. re:Bastille on Whitebox (cweisiger@i-55.com)
>>
>>--__--__--
>>
>>Message: 1
>>Subject: Re: [WBEL-users] SendMail Gateway
>>From: Johnny Hughes <mailing-lists@hughesjr.com>
>>Reply-To: mailing-lists@hughesjr.com
>>To: whitebox-users@beau.org
>>Date: Sat, 26 Jun 2004 12:15:37 -0500
>>
>>
>>--=-KbrJGdFPBx3aGVRTdvrd
>>Content-Type: text/plain; charset=iso-8859-15
>>Content-Transfer-Encoding: quoted-printable
>>
>>I think squirrelmail would be a viable way to do this... it can talk to
>>a mail server via imap.
>>
>>On Sat, 2004-06-26 at 11:49, Simone72 wrote:
>>
>>
>>
>>>Thank you very much for your reply. I am already having a look at
>>>openwebmail.org, hope it can be what I'm looking for. For imap, let's
>>>say we have to use it, or at least a part of the users......
>>>=20
>>>Thanks again for the suggestion
>>>Simone
>>>=20
>>>=20
>>>=20
>>>=20
>>>=20
>>> --------- Original Message --------
>>> Da: "Raul pitti" <rdpitti@globaltecsa.com>
>>> To:=20
>>> Oggetto: Re: [WBEL-users] SSendMail Gateway
>>> Data: 26/06/04 18:20
>>> =20
>>> =20
>>> =20
>>> Simone72 wrote:
>>> =20
>>> > Hi all,
>>> > thought I would post my question here, if this is not the
>>> appropriate=20
>>> > place, I apologize.
>>> >=20
>>> > This is the environment I'm dealing with:
>>> > the company I'm working for has 3 offices in 3 different
>>> cities, with a=20
>>> > VPN connection. Each of the 3 office has its own Exchange
>>> server 2000=20
>>> > (the domain is the same). Right now, I just set up a
>>> sendmail server as=20
>>> > a mail gateway (MailScanner - ClamAV - Spamassassin.....very
>>> > satisfied), and relay the mail to the three different
>>> exchange servers=20
>>> > using mailertable on a per user policy. Say the sendmail is
>>> the only one=20
>>> > having a public ip (or better in a future, behind a
>>> firewall), i s there=20
>>> > a way for users to connect via imap to their accounts from
>>> outside the=20
>>> > VPN (home for ex.) ?
>>> > All the users mailboxes are on the exchange servers, so I
>>> thought if=20
>>> > sendmail can be a mail gateway using mailertable there could
>>> possibly be=20
>>> > a way to route imap to the right server using the same
>>> rules.......that=20
>>> > would be great. The alternative I'm fighting with my boss
>>> about, is=20
>>> > adding an extra exchange server to be a front end for the
>>> other 3....but=20
>>> > paying $$$ another licence is, IMHO....... Another thing is
>>> providing=20
>>> > the web access, and I thought it could be done with a log-in
>>> web page=20
>>> > redirecting to the right server (something to be done
>>> PHP-Apache-MySql=20
>>> > perhaps).
>>> > I'm pretty new in Linux, and have a 2 week experience with
>>> sendmail, so=20
>>> > if I asked too much, please be nice :-) . Just would like to
>>> know if=20
>>> > this is possible or if someone has a better idea.
>>> >=20
>>> > Just something I sincerely feel to add. I'm not really
>>> active on the=20
>>> > mailing list cause of my little experience, but I want to
>>> thank all the=20
>>> > people that mail, because just reading the messages I
>>> learned a lot=20
>>> > (thanks for the tip on the 3com 905B card, I got crazy with
>>> network=20
>>> > problems on the samba server!!), and John Morris for WBEL
>>> I'm using on=20
>>> > all the server I set up, THANKS.
>>> >=20
>>> > Have a nice day
>>> > Simone
>>> >=20
>>> > ----
>>> > Email.it, the professional e-mail, gratis per te: clicca qui
>>> > <http://www.email.it/cgi-bin/start?sid=3D33>
>>> >=20
>>> > Sponsor:
>>> > Scopri il benessere che solo l’aloe vera regala al tuo
>>> corpo: cura la=20
>>> > tua pelle Con la vasta gamma di prodotti che ti offre
>>> Erboristeria.com
>>> > Clicca qui
>>>
>>>
>>>
><http://adv.email.it/cgi-bin/foclick.cgi?mid=3D2380&d=3D20040626>
>
>
>>> >=20
>>> i am not sure about open imap directly. Have you think in a vp
>>> n?, they=20
>>> can connect using VPN from home.
>>> From webmail, if you want to use imap, take a look at
>>> squirrelmail=20
>>> (google for it :-D ), or if you want to provide pop3 (wich i
>>> like=20
>>> better) , then you can use openwebmail.org (it will let you
>>> set up a=20
>>> frontend and then add pop3 account for remote retrieval of the
>>> messages).
>>> I higly reccomend using a SSL site for webmail.
>>> Regards!
>>> RAul
>>> =20
>>>=20
>>>=20
>>>----
>>>Email.it, the professional e-mail, gratis per te: clicca qui
>>>=20
>>>Sponsor:
>>>E' iniziata l'era del fax virtuale! Si chiama EmailFax IN e significa:
>>>affidabilit=E0, semplicit=E0, qualit=E0 e risparmio. Clicca per saperne
>>>
>>>
>d=
>
>
>>i
>>
>>
>>>pi=F9
>>>Clicca qui
>>>
>>>
>>--=-KbrJGdFPBx3aGVRTdvrd
>>Content-Type: text/html; charset=utf-8
>>Content-Transfer-Encoding: 7bit
>>
>><!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 TRANSITIONAL//EN">
>><HTML>
>><HEAD>
>> <META HTTP-EQUIV="Content-Type" CONTENT="text/html; CHARSET=UTF-8">
>> <META NAME="GENERATOR" CONTENT="GtkHTML/3.0.9">
>></HEAD>
>><BODY>
>>I think squirrelmail would be a viable way to do this... it can talk to a
>>
>>
>mail server via imap.<BR>
>
>
>><BR>
>>On Sat, 2004-06-26 at 11:49, Simone72 wrote:
>><BLOCKQUOTE TYPE=CITE>
>> <FONT COLOR="#737373"><I>Thank you very much for your reply. I am
>>
>>
>already having a look at openwebmail.org, hope it can be what I'm
>looking for. For imap, let's say we have to use it, or at least a part of
>the users......<BR>
>
>
>> <BR>
>> Thanks again for the suggestion<BR>
>> Simone<BR>
>> <BR>
>> <BR>
>> <BR>
>> <BR>
>> <BLOCKQUOTE>
>> --------- Original Message --------<BR>
>> Da: "Raul pitti" <rdpitti@globaltecsa.com><BR>
>> To: <BR>
>> Oggetto: Re: [WBEL-users] SSendMail Gateway<BR>
>> Data: 26/06/04 18:20<BR>
>> </FONT><BR>
>> <FONT COLOR="#737373" SIZE="2"><BR>
>> <BR>
>> Simone72 wrote:<BR>
>> <BR>
>> > Hi all,<BR>
>> > thought I would post my question here, if this is not the
>>
>>
>appropriate <BR>
>
>
>> > place, I apologize.<BR>
>> > <BR>
>> > This is the environment I'm dealing with:<BR>
>> > the company I'm working for has 3 offices in 3 different
>>
>>
>cities, with a <BR>
>
>
>> > VPN connection. Each of the 3 office has its own Exchange
>>
>>
>server 2000 <BR>
>
>
>> > (the domain is the same). Right now, I just set up a sendmail
>>
>>
>server as <BR>
>
>
>> > a mail gateway (MailScanner - ClamAV - Spamassassin.....very
>>
>>
><BR>
>
>
>> > satisfied), and relay the mail to the three different
>>
>>
>exchange servers <BR>
>
>
>> > using mailertable on a per user policy. Say the sendmail is
>>
>>
>the only one <BR>
>
>
>> > having a public ip (or better in a future, behind a
>>
>>
>firewall), i s there <BR>
>
>
>> > a way for users to connect via imap to their accounts from
>>
>>
>outside the <BR>
>
>
>> > VPN (home for ex.) ?<BR>
>> > All the users mailboxes are on the exchange servers, so I
>>
>>
>thought if <BR>
>
>
>> > sendmail can be a mail gateway using mailertable there could
>>
>>
>possibly be <BR>
>
>
>> > a way to route imap to the right server using the same
>>
>>
>rules.......that <BR>
>
>
>> > would be great. The alternative I'm fighting with my boss
>>
>>
>about, is <BR>
>
>
>> > adding an extra exchange server to be a front end for the
>>
>>
>other 3....but <BR>
>
>
>> > paying $$$ another licence is, IMHO....... Another thing is
>>
>>
>providing <BR>
>
>
>> > the web access, and I thought it could be done with a log-in
>>
>>
>web page <BR>
>
>
>> > redirecting to the right server (something to be done
>>
>>
>PHP-Apache-MySql <BR>
>
>
>> > perhaps).<BR>
>> > I'm pretty new in Linux, and have a 2 week experience with
>>
>>
>sendmail, so <BR>
>
>
>> > if I asked too much, please be nice :-) . Just would like to
>>
>>
>know if <BR>
>
>
>> > this is possible or if someone has a better idea.<BR>
>> > <BR>
>> > Just something I sincerely feel to add. I'm not really active
>>
>>
>on the <BR>
>
>
>> > mailing list cause of my little experience, but I want to
>>
>>
>thank all the <BR>
>
>
>> > people that mail, because just reading the messages I learned
>>
>>
>a lot <BR>
>
>
>> > (thanks for the tip on the 3com 905B card, I got crazy with
>>
>>
>network <BR>
>
>
>> > problems on the samba server!!), and John Morris for WBEL I'm
>>
>>
>using on <BR>
>
>
>> > all the server I set up, THANKS.<BR>
>> > <BR>
>> > Have a nice day<BR>
>> > Simone<BR>
>> > <BR>
>> > ----<BR>
>> > Email.it, the professional e-mail, gratis per te: clicca qui
>>
>>
><BR>
>
>
>> > <http://www.email.it/cgi-bin/start?sid=33><BR>
>> > <BR>
>> > Sponsor:<BR>
>> > Scopri il benessere che solo l&rsquo;aloe vera regala al
>>
>>
>tuo corpo: cura la <BR>
>
>
>> > tua pelle Con la vasta gamma di prodotti che ti offre
>>
>>
>Erboristeria.com<BR>
>
>
>> > Clicca qui
>>
>>
><http://adv.email.it/cgi-bin/foclick.cgi?mid=2380&d=20040626><BR>
>
>
>> > <BR>
>> i am not sure about open imap directly. Have you think in a vp n?,
>>
>>
>they <BR>
>
>
>> can connect using VPN from home.<BR>
>> From webmail, if you want to use imap, take a look at squirrelmail
>>
>>
><BR>
>
>
>> (google for it :-D ), or if you want to provide pop3 (wich i like
>>
>>
><BR>
>
>
>> better) , then you can use openwebmail.org (it will let you set up
>>
>>
>a <BR>
>
>
>> frontend and then add pop3 account for remote retrieval of the
>>
>>
>messages).<BR>
>
>
>> I higly reccomend using a SSL site for webmail.<BR>
>> Regards!<BR>
>> RAul</FONT><BR>
>> <FONT COLOR="#737373"><BR>
>> </BLOCKQUOTE>
>> </FONT><BR>
>> <FONT COLOR="#737373" SIZE="2">----<BR>
>> Email.it, the professional e-mail, gratis per te: </FONT><A
>>
>>
>HREF="http://www.email.it/cgi-bin/start?sid=3"><FONT SIZE="2"><U>clicca
>qui</U></FONT></A><BR>
>
>
>> <FONT COLOR="#737373" SIZE="2"><BR>
>> Sponsor:<BR>
>> E' iniziata l'era del fax virtuale! Si chiama EmailFax IN e significa:
>>
>>
>affidabilità, semplicità, qualità e risparmio. Clicca per
>saperne di più</FONT><BR>
>
>
>> <A
>>
>>
>HREF="http://adv.email.it/cgi-bin/foclick.cgi?mid=1570&d=20040626"><FONT
>SIZE="2"><U>Clicca qui</U></I></FONT></A>
>
>
>></BLOCKQUOTE>
>></BODY>
>></HTML>
>>
>>--=-KbrJGdFPBx3aGVRTdvrd--
>>
>>
>>--__--__--
>>
>>Message: 2
>>Date: Sat, 26 Jun 2004 23:42:13 -0400
>>From: Andy <industrial_soup@dynacomp.net>
>>To: whitebox-users@beau.org
>>Subject: [WBEL-users] Bastille on Whitebox
>>
>>Hi,
>>
>>Has anyone had any luck running Bastille (
>>http://www.bastille-linux.org/ ) on Whitebox?
>>
>>I'm getting an error message saying that the OS is not supported. Maybe
>>there is a way to trick it into thinking its running on RHEL?
>>
>>Thank you for your help,
>>
>>Andy
>>
>>
>>
>>--__--__--
>>
>>Message: 3
>>Subject: Re: [WBEL-users] Downloading ISO 2
>>From: "Daniel J. Summers" <danieljs@knology.net>
>>To: WhiteBox Enterprise Linux Users List <whitebox-users@beau.org>
>>Date: Sat, 26 Jun 2004 23:12:36 -0500
>>
>>On Tue, 2004-06-22 at 13:54, James Knowles wrote:
>>
>>
>>>>Which client?
>>>>
>>>>
>>>I've been using Mozilla/Netscape. Before that elm, with a short
>>>intervening use of Eudora when the company I worked for at the time (a
>>>Unix shop) forced us to get rid of Linux and use Windows NT on our
>>>workstations (go figure!).
>>>
>>>
>>Do you know of a way to convert mail from Netscape? I've recently
>>converted from XP/Netscape 7.1 to WBEL/Ximian 1.4. I was able to
>>dump/import my addresses, but I can't find a way to dump the messages so
>>I can import them. I've got nothing that I can't afford to lose, so
>>it's not a big deal, but it is a minor annoyance. :)
>>
>>--
>>Daniel J. Summers
>>E-mail
>>
>>- danieljs@knology.net
>>Web Site (Personal)
>>
>>-
>>http://www.knology.net/~mopsmom/daniel
>>Web Site (Sunday School)
>>
>>-
>>http://www.knology.net/~mopsmom/daniel/sundayschool
>>
>>
>>--__--__--
>>
>>Message: 4
>>Date: Sat, 26 Jun 2004 23:53:24 -0500 (CDT)
>>From: cweisiger@i-55.com
>>To: Andy <industrial_soup@dynacomp.net>
>>Subject: re:[WBEL-users] Bastille on Whitebox
>>Cc: whitebox-users@beau.org
>>
>>probably because there is not a /etc/redhat-release file
>>that it is looking for
>>
>>you might want to create a /etc/redhat-release file
>>and put in something about RedHat Enterprise 3.0
>>
>>see if that works.
>>
>>
>>--__--__--
>>
>>_______________________________________________
>>Whitebox-users mailing list
>>Whitebox-users@beau.org
>>http://beau.org/mailman/listinfo/whitebox-users
>>
>>
>>End of Whitebox-users Digest
>>
>>
>>
>>
>
>_______________________________________________
>Whitebox-users mailing list
>Whitebox-users@beau.org
>http://beau.org/mailman/listinfo/whitebox-users
>
>
>
>
>