Page 3 of 3 FirstFirst 123
Results 21 to 24 of 24

Thread: What if every security measure fails...

  1. #21
    Senior Member gore's Avatar
    Join Date
    Oct 2002
    Location
    Michigan
    Posts
    7,177
    You're welcome man. If you'd like my personal opinion, and, by that, I mean DO NOT let anyone tell you what to run, because that should be whatever works best for YOUR needs (Which is why I generally get annoyed by ads lol, they act like one product does one thing for everyone the same or something, when everyone doesn't have the same needs) But really, I'd say to look into this:

    http://m0n0.ch/wall/

    http://www.pfsense.org/

    Which is what I was talking about before, but, really, if you've got a P4,, even a full FreeBSD would do it because you have some decent power there. I literally saw a Cell Phone yesterday with more RAM and a faster Processor, than my test machine. Like, it has a 1 GHz, and my test box is a Celeron 433 MHz and less than half the RAM too lol. But FreeBSD, can be customized SO much, it's like insane.

    Linux can be too of course, I mean, when it comes down to the line, you DO have source for all of them, but BSD in general, just seems to try more at being FULLY custom.

    I've heard AMAZING stories that were actually verifiable where people take BSD and slap it on a Server farm, and not ever even have to update. You strip BSD down to nothing but what's needed to boot, and what you need to run a Server, and "Hack" the Server portion into the Kernel, set it to deny everything but basic web traffic, and you have a machine no one is getting into without basically a jack hammer lol.

    I know in Theory Linux can do this, but I don't personally know of a verified installation like that. And with RedHat saying they want to be like Microsoft; LOL more and MORE bloat.

    There are even Window Managers I've NEVER seen Linux have available you can install from ports and Binary Packages in FreeBSD that are totally minimalist. Like, GUI on a 386 kind.

    That's sort of always been the differences though between Linux and BSD; One focuses on PR, the other on not shipping broken out of the box like RedHat did that time lol.

    Either way though, FreeBSD seems to be getting a LOT of use as a Custom Firewall Router combo kit these days. And the fact that a LOT of well known Security products, are using FreeBSD as the core, REALLY says something.

  2. #22
    Member
    Join Date
    Feb 2012
    Posts
    30
    You strip BSD down to nothing but what's needed to boot
    *Shrug* Thats why I compile things from my end then upload whatever is missing.
    and "Hack" the Server portion into the Kernel
    Way to make apache ring-0.

    and you have a machine no one is getting into without basically a jack hammer lol.
    *Steals files and ruins lives*
    *Makes children and clowns cry*
    Coooooooobraaaaa!!!!!!!!!

    http://www.youtube.com/watch?v=nv36Hatr4qs

  3. #23
    Senior Member gore's Avatar
    Join Date
    Oct 2002
    Location
    Michigan
    Posts
    7,177
    Yea, I'm sure uploading to a machine that doesn't accept the connection is a common thing. Specially when the "shell" can't execute anything... You've never heard of this? I've brought it up before but I just don't remember what it's called.

    And no one in their right mind, would use Apache like that. I think you aren't understanding what I mean. I bet it helps that I can't remember WTF it's called, and googling "do this with the Kernel" doesn't help either.

    The only thing I remember from reading about it the ONE time I did manage to find it, was that some porn sites used the technique so that they wouldn't be so easily broken. I know a lot of other places that use it that are the opposite but, since I can't remember what this damn thing is called, doesn't matter much.

    The end result is an OS that can't execute anything other than what the Kernel needs, and you can't actually execute things on it.

    I'm not saying no one could ever break a machine doing this, but I'm fine with saying I don't know of one verified claim that someone's ever broke into one.

  4. #24
    Senior Member
    Join Date
    Dec 2003
    Location
    Texas
    Posts
    164
    i had a client refuse to pay me called the cops so i put a password on his bios so he couldn't change boot order and put a password on windows ended up the same scenario in refrence to your earlier post about a client trying to screw you out of money gore
    Last edited by romanticcowboy; November 10th, 2012 at 10:43 PM. Reason: clarification

Similar Threads

  1. Ethical Hacking!
    By E5C4P3 in forum AntiOnline's General Chit Chat
    Replies: 33
    Last Post: January 17th, 2008, 12:40 AM
  2. CISSP Notes: Security Models: Access Control Models
    By MrLinus in forum The Security Tutorials Forum
    Replies: 4
    Last Post: October 11th, 2003, 03:22 AM
  3. Internet Security for the "newbies"
    By .:|Mymx|:. in forum AntiOnline's General Chit Chat
    Replies: 4
    Last Post: May 24th, 2003, 10:37 AM
  4. NEWS: This weeks security news
    By xmaddness in forum Miscellaneous Security Discussions
    Replies: 0
    Last Post: September 25th, 2002, 08:53 PM
  5. Latest SANS Update
    By xmaddness in forum Miscellaneous Security Discussions
    Replies: 0
    Last Post: May 29th, 2002, 09:27 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •