Linux Security Series (BT4 Toolz): Adito (a SourceForge Project) [Now (OpenVPN-ALS)]
Lisa Kachold
lisakachold at obnosis.com
Sun Oct 4 17:02:43 MST 2009
Do you have a port 443 out from your job or school and need to have
secure VPN access files or ssh resources on your internal network at
home?
IPSEC & PPTP are imperfect as most firewalls can block them (PPTP
requires two sessions). Both have (ironically) protocol inherent
security holes, that can be disasterous without careful implementation
and patch upgrades.
References:
http://www.fx.dk/firewall/ipsec-firewall.html
http://en.wikipedia.org/wiki/Point-to-point_tunneling_protocol
http://www.darknet.org.uk/tag/ipsec-security/
http://www.securityfocus.com/infocus/1821
Well Adito (OpenVPN-ALS) to the rescue for all users, developers, and
administrators!
Alternate uses include controlling resources from a DMZ in the cloud;
maintaining control of borrowed or contract support sites, and of
course nepharious ones such as maintaining access to a hacked network
or site (so it's good that systems administrators know what this is
and how it's installed). NOTE this does require a static IP, so if
you have enabled a Ubuntu server as DMZ behind a Linksys, and cox
resets your DHCP address, you simply must run the installer again to
recreate your self signed certificate!
References:
http://sourceforge.net/projects/adito/
http://www.sohoadvisers.com/tutorials/adito-ssl-vpn/installing-adito-ssl-vpn
http://holisticinfosec.blogspot.com/2009/02/toolsmith-article-on-adito-ssl-vpn-now.html
http://reader.feedshow.com/show_items-feed=0706301c18a68fbfc5c65367d530382c
There's even a windows installer: http://lars.werner.no/?p=174
Next Saturday is BT4 802.11 Disassembled at the Foundation for Blind
Children at 10:00 - 13:00
http://plug.phoenix.az.us/node/661
--
(623)239-3392
(503)754-4452 www.obnosis.com
http://www.obnosis.com/bt4.html
http://www.obnosis.com/motivatebytruth/beprepared.jpg
More information about the PLUG-discuss
mailing list