INFO-VAX Thu, 22 May 2008 Volume 2008 : Issue 284 Contents: Re: FTPand SSH security RE: Lantronix MPS1-T print servers failing Re: nagios/nrpe for VMS heads-up Re: nagios/nrpe for VMS heads-up ---------------------------------------------------------------------- Date: Thu, 22 May 2008 09:06:00 +1000 From: Gremlin Subject: Re: FTPand SSH security Message-ID: Bob Koehler wrote: > In article , Gremlin writes: >> I suppose the issue of Nessus and others identifying the SSH version >> being at risk would be solved by another stack as well? > > Nessus is a favorite amoungst the Windows/UNIX security folks, but > it doesn't know jack about DEC hardware, netowrk protocols, VMS, > or third party IP stacks. > > Unfortunately Nessus thinks it knows and generates a great many > false positives which the security "experts" then troll around. > I've been gratefull that my local secutiry experts realised thier > own lack of expertice. > Actually, Nessus *does* know about VMS and can identify it and some real issues with its components (such as SSH patches required in the HP stack). For all its failings, most VMS sites are multi-OS and therefore it and other basic tools can be used as a starting point for more detailed investigations by knowledgeable practicioners. In this case I am just trying to shut down an obvious hole, that is, giving away too much information about what someone may try to connect to and exploit. Hence, any tool that helps me identify these is of value to me. I can then go to a knowledgeable source, in this case COV, and seek further information ------------------------------ Date: Wed, 21 May 2008 16:35:23 -0500 From: "Michael F. Clark" Subject: RE: Lantronix MPS1-T print servers failing Message-ID: Nope they run perfect if I put them on a separate network. Just have problems connected our normal network.=20 -----Original Message----- From: Rich Jordan [mailto:jordan@ccs4vms.com]=20 Sent: Tuesday, May 20, 2008 12:04 PM To: Info-VAX@Mvb.Saic.Com Subject: Re: Lantronix MPS1-T print servers failing On May 20, 10:37 am, "Michael F. Clark" wrote: > We have several of these devices and use them to print over LAT from=20 > OpenVMS(7.2-1). Yesterday and today all the MPS1's failed between 8am > and 10am. Around 3PM yesterday they started functioning again on=20 > their own. > > Anyone have any idea's what would cause something like this? All the=20 > MPS100's function fine and yesterday I upgraded the firmware on 1 MPS1 > as a test. Today it failed again. > > Michael Clark > > Network Administrator > > P: > > 920.459.1294 > > TF: > > 800.203.8916 294 > > http://www.nemschoff.com/TagArial.jpg > > CONFIDENTIALITY NOTE: This electronic transmission, including all=20 > attachments, is directed in confidence solely to the person(s) to whom > it is addressed, or an authorized recipient, and may not otherwise be=20 > distributed, copied or disclosed. The contents of the transmission may > also be subject to intellectual property rights and all such rights=20 > are expressly claimed and are not waived. If you have received this=20 > transmission in error, please notify the sender immediately by return=20 > electronic transmission and then immediately delete this transmission, > including all attachments, without copying, distributing or disclosing same. I don't have any Lantronix devices. Is the device time/date aware? If so is it possible the firmware can't handle current date/time? Sorry, no other thoughts. Rich ------------------------------ Date: Wed, 21 May 2008 13:11:37 -0500 From: Michael Austin Subject: Re: nagios/nrpe for VMS heads-up Message-ID: charles.durfee@bassett.org wrote: > Nagios' nrpe is on my VMS 7.3-2 systems but I couldn't enable the > service in TCPIP Services. OPCOM mentioned "INTERnet ACP Error during > process startup, Nolisten Service Disabled - NRPED Server". The > solution was to add /FLAG=LISTEN to the recommended TCPIP SET command > in the Nagios howto.txt > what is it? what does it do? ------------------------------ Date: Wed, 21 May 2008 20:58:57 +0200 From: "Martin Vorlaender" Subject: Re: nagios/nrpe for VMS heads-up Message-ID: Michael Austin wrote: > charles.durfee@bassett.org wrote: >> Nagios' nrpe is on my VMS 7.3-2 systems but I couldn't enable the >> service in TCPIP Services. OPCOM mentioned "INTERnet ACP Error durin= g >> process startup, Nolisten Service Disabled - NRPED Server". The >> solution was to add /FLAG=3DLISTEN to the recommended TCPIP SET comma= nd >> in the Nagios howto.txt > > what is it? what does it do? http://www.nagios.org/ Nagios is an Open Source host, service and network monitoring program. It has been designed to run under the Linux operating system, but works fine under most *NIX variants as well. nrpe's are Nagios Remote Plugin Extensions - an agent. cu, Martin -- = One OS to rule them all | Martin Vorlaender | OpenVMS rules! One OS to find them | work: mv@pdv-systeme.de One OS to bring them all | http://vms.pdv-systeme.de/users/martin= v/ And in the Darkness bind them.| home: martin.vorlaender@t-online.de ------------------------------ End of INFO-VAX 2008.284 ************************