Problem: Enterprise is under Denial Of Service Attack that brings down key elements of the business or the whole network at all.
To track the attacker is the first step in handling the attack and unless the flood is coming from inside (most probably not in a well managed LAN) you will need help of [...]
May
28
2009
28
2009
Tracking the source of DOS attack with Cisco IOS
May
8
2009
8
2009
UTM or Power ? Checkpoint
UTM or Power ?
How do you know when logged in with ssh what type of machine you are working with ?
I know 3 ways to find it:
1) By the interfaces names , see the difference:
UTM -
(output edited for conciseness)
[Expert@Firewall]# ifconfig
DMZ Link encap Ethernet HWaddr 00 90 FB 22 11 00
DMZ.10 Link encap Ethernet HWaddr 00 [...]
May
2
2009
2
2009
Change password for console expert user Checkpoint Splat
As seen many times Checkpoint has own way of doing otherwise simple and straightforward tasks. Changing
password for shell account is another example.
By default when installed Splat creates two console users – admin and root. You can’t login remotely
(i.e. by ssh) with root as /etc/ssh/sshd_config contains this:
DenyUsers root shutdown halt nobody ntp pcap rpm
AllowGroups root
So , [...]