Results 1 to 8 of 8

Thread: intranet and some little bastards

  1. #1

    intranet and some little bastards

    I've just found out that some of the kids have found one of my web aplications on the intranet, before it's gone live. They gave me a pile of BS about how they found it and them being hackers (they don't even come close to script kiddies).

    I'm fairly sure they had just seem the URL over my shoulder when I was showing my line manager my handywork, because it's one of about 5 aplications in the same place and they have only found one (they didn't even find the directory above :).

    Now I'm not worried about them rooting the box or anything, but what i would like is to workout what they're doing and when. Has anyone got any good links to websecurity or any advice?

    Thanks

  2. #2

    Re: intranet and some little bastards

    You could try CERT. That's the only place I can think of right now.

    http://www.cert.org/nav/index_green.html

  3. #3

    Re: intranet and some little bastards

    I know what you mean, I hate such script kiddies ..
    why not try some intrusion detection system, like http://www.tripwire.org/ [tripwire] or if you have more than one or two machines to watch you could set up a loghost, so that there is one machine where all the logs get collected.
    http://www.dulug.duke.edu/~icon/dulog


  4. #4

    Re: intranet and some little bastards

    or use .htaccess files to keep unwanted people out until you are ready to go live?

  5. #5

    Re: intranet and some little bastards

    Thanks,

    I'm looking into all your suggestions.

    I guess I'm just a little worried one or two of them know more than I give them credit for and and just falling back on my maxim "Prepare for the worst, hope for the best". (That and it'll give me an excuse to study security during work hours *)

  6. #6
    Moderator
    Kind Mastermind
    stryder144's Avatar
    Join Date
    Aug 2001
    Location
    Denver, CO
    Posts
    2,924

    Re: intranet and some little bastards


    (That and it'll give me an excuse to study security during work hours *)
    Hey, if it wasn't for work, I wouldn't be as well-read as I am ! I have to be here for twelve hours (with maybe two hours worth of work to accomplish between two people), so I might as well do something interesting, like read.

  7. #7
    Moderator
    Good Guru
    Compunuts's Avatar
    Join Date
    May 2001
    Location
    California
    Posts
    3,935

    Re: intranet and some little bastards


    or use .htaccess files to keep unwanted people out until you are ready to go live?
    I agree. Rather than looking for others, why not use built-in tool that you've already got??

  8. #8

    Re: intranet and some little bastards

    http://www.linuxsecurity.com is a good site, I recommend it .. lots of info there .. Also check out PacketStorm, links are provided on LinuxSecurity.com .. good luck ..
    *Vagrant

Similar Threads

  1. NAS access via NFS - VPN and Intranet
    By keinding in forum Linux - Hardware, Networking & Security
    Replies: 0
    Last Post: 03-05-2011, 01:23 PM
  2. Intranet server
    By POD in forum Linux - Software, Applications & Programming
    Replies: 3
    Last Post: 11-06-2009, 02:36 AM
  3. Hosting a website for Intranet
    By saswata in forum Windows - General Topics
    Replies: 5
    Last Post: 06-05-2008, 05:30 AM
  4. Designing an Intranet for a Local LAN
    By topzy2000 in forum Linux - Hardware, Networking & Security
    Replies: 0
    Last Post: 09-15-2005, 03:32 PM
  5. Proxy and Intranet...
    By Sonic Revenge in forum Linux - Software, Applications & Programming
    Replies: 3
    Last Post: 05-22-2002, 05:11 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •