dusf

I cannot tell you the logic behind it, if forwarding and redirection were enabled, I would still have access to the exact same information - just more conveniently on my phone, gmail repeat alerts until seen, etc. etc. I am hoping there is some way around this. Today there was talk of remote desktop access being set up for me to access office systems, which would include the local Outlook client if that helps.

Thanks for that, looks like a different version of OWA, but suffice to say I do have redirect and forward enabled, they just seem to be disabled by my corporate overlord's admin.

I work remotely, and I have an email address I access using the Outlook Web App, but I would love if I could forward or redirect the email to a Gmail account, as that would give me a lot of options regarding complex filters and notifications etc. Unfortunately, the redirect and forwarding options in the settings do not work, and SMTP access or ADUC for same is not a possibility at this time.Even if I could login with the Android Outlook Web App I would be satisfied, but it does not recognise my email address and/or the domain.Since I am able to access the email in a web browser, is there anyway to get it from here to another email address or a local email client?

Just looking to encrypt the Windows partiton. LVM on LUKS covers Linux.

I am going to look into BestCrypt now. I wonder would it be easy enough to remove it without affecting my LUKS on LVM setup when there is a TrueCrypt for release. I have spent the evening learning about a new project CipherShed. They have already started to dev a fork of TrueCrypt and they are looking for all kinds of volunteers. https://ciphershed.org/ irc.oftc.org #ciphershed I will need to find what I am encrypting Windows with first.

Thanks for the reply Cooper. Please see the last paragraph in my original post.

I have setup LVM on LUKS for my Linux partitons which I am very happy with but I would also like to encrypt Windows 8.1. I had planned to use TrueCrypt until I learned it does not support GPT. I would rather not have to start over configuring my laptop to use MBR as to encrypt Windows 8.1 unless absolutely necessary. Do any of you know of a hack or workaround that would allow TrueCrypt to work on GPT UEFI, or is this something that simply will not happen until there is a release from some of the groups trying to continue TrueCrypt? GRUB could chainload TrueCrypt or vice versa perhaps. If you are dual booting with GPT Windows 8.1 and have it encrypted what is your setup? Maybe MBR is my best option? For anyone wondering why use Windows at all the main reason is that I sometimes I like to play games that WINE cannot handle or cannot handle as well as Windows. An example is that I may be on call for work and gaming when there is nothing to do, and it is nice to be able to alt-tab between work systems, personal data, and gaming. quickly without having to switch operating systems. Also, I want the whole partition encrypted, not just passwords and select dirs. I do not consider Bitlocker an option, and not only because I would need to connect a flash drive each boot.

Hi I use Ubuntu and Debian most of the time, but for when I am forced to use Windows 8.1... Windows defender has been revamped for Windows 8 so it apparently does much more than Microsoft Security Essentials does on previous versions of windows but is it enough security? Is the Windows firewall enough security? I am behind stuck behind a Netopia 2247 until I upgrade in the near future, and due to a connection issue I have with a remote server at the moment its firewall is set to off. If either Defender or the stock Windows firewall are insufficient, is it worth paying for anti-malware, anti-virus, and firewall software to replace them or are any of the free solutions adequate? Please recommend specific software if necessary.

I know I can always come back to this post for the avatar link, but out of curiousity, how did you access it please?

I think the image is a bit distorted but it will have to do for now, thanks dude :)

I have looked and looked and I have decide that I will just have to ask even though it's probably something obvious! How do I change my forum avatar? I have been, from what I can see, through all the settings in the CP.

route -n That command displays the DG I set.

I had a look at http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080094430.shtml which looks good, albeit it complicated :) Although I studied three of the semesters 4/5 years ago I need to study the entirety of the new curriculum which has been updated before going to the exam. I have never installed an IOS etc, but I'm sure if I run into difficulty I would be able to get help on these forums? Also, if I want to use more than Packet Tracer for the CCNA labs the modules I will need for the three 2600s are http://cgi.ebay.ie/Cisco-WIC-2T-2600-Series-2-port-Serial-Interface-Module-/300554368392?pt=UK_Computing_Networking_SM&hash=item45fa6fb588, do I need a similar module for the spare module slot but with an extra Ethernet port to set one up as my home router, or am I somehow going to convert the console or auxiliary port to take the connection from the roof in, with the connection from my pc coming from the regular Ethernet interface on the 2600? If a module is required, do you know the name of it so I can price it? Well I rely a lot on Bitorrent (only when using Xubuntu with Ufw up but) so for my needs I have to leave certain ports listening, is there anyway I can minimize any security risk they may pose, is it easy for a potential threat to discover what ports are listening once they have my IP, and even as that what can they do with that listening port? From my understanding of egress filtering this would entail configuring not just inbound ports, but outbound ports, which although would take effort every time I want to do something new, I think after I get the hang of opening and closing ports on the 2600 I would quite enjoy it, and learn from it! :) And the risk is very much decreased by using peer reviewed software on linux, yes? That said, it would be nice when playing games on Windows 7/XP if I was able to check my email and browse without worry of my passwords etc being compromised... would you suggest any software instead of, or to compliment Firefox and Bitdefender? I'm already using NoScript with the former. Are you familiar with Ufw? Or in my case the frontend for Ufw, Gufw. Neither were turned on by default and I had to install and set them to block incoming ports other than specific torrent ones. I'm all but certain there's no built in firewall, I'm just not sure if repeater is the correct term for the device, it's possibly an 'IDU'. To confirm I executed ifconfig, which I am familiar with, and I expected to see the default gateway I configured but instead I see my inet, bcast, and mask addresses and not my DG? Using the address I have configured in the GUI firefox reports 'Firefox can't establish a connection to the server at xxx.xxx.xxx.xxx.'. I tried http, and https, and both with the bcast, perhaps it requires a port to respond? If the default gateway is as I suspect a high site transmitting and receiving off a local hotel here, would it respond to me, a regular customer? So my software firewall Ufw is insufficient then? I will have a look at Untangle, PFsense and Smoothwall - building a physical firewall running one of those distros would be a nice little project!

.

I use Xubuntu 11.04, and although I have the Gufw installed with incoming connections blocked by default apart from torrents, I have no physical router and instead LAN NIC is connected into what I think is a repeater, which takes the cable up to the roof that is receiving a signal from my ISP, am i secure firewall wise? What is on the roof is, or looks very similar to http://cgi.ebay.com/ALVARION-3-5Ghz-ANTENNA-AN1704-SU-RA-OF-3-5b-OFDM-/230509999385 It should be noted, sometimes I boot into Windows 7/Windows XP which I have installed Bitdefender on. Oh and Darren mentioned home firewalls not usually being adequate, so if you maintain I buy one please recommend some models. I have some Cisco 2600s here that are just missing WAN NICs, perhaps I could adapt one with a LAN NIC somehow?

Thanks all. Will just connect with SSL on, but SSL verify off, and if I can get access to it I'll try update the port on the Wiki later too.

I'm able to connect to the server fine on regular ports without SSL. http://www.hak5.org/w/index.php/IRC lists the SSL port as 6697 but when I have SSL enabled and try to connect on this port i cannot. With SSL enabled for port 7000 I am able to connect, but when I try to set: ssl_verify = "yes" irssi returns: 09:35 -!- Irssi: warning Could not verify SSL servers certificate: self signed certificate 09:35 -!- Irssi: warning Subject : /C=US/ST=New York/O=AwesomeIRC/OU=IRCd/CN=Irc3.AwesomeIRC.Net 09:35 -!- Irssi: warning Issuer : /C=US/ST=New York/O=AwesomeIRC/OU=IRCd/CN=Irc3.AwesomeIRC.Net 09:35 -!- Irssi: warning MD5 Fingerprint : 41:79:5F:C3:20:35:9B:1C:8C:D6:E1:93:6E:7C:26:75 09:35 [hak5] -!- Irssi: Connection lost to irc.hak5.org Is SSL weaker without SSL_verify, and should it be working on port 7000? Also, I know security on IRC isn't a major issue and you may think why bother with SSL for it, but I'm learning and thus is the reason for my post.

It now works perfectly, even by pattern. It seems there was some corruption in Firefox, undoing my setting of network.proxy.socks_remote_dns to true and reinstalling fixed that. Thanks to all for valued input.

That's exactly what I have been doing friend, FoxyProxy is just for switching proxies that you input to it, either manually which is allowing me access everything in Facebook with all media, or by pattern (works with all but Facebook which only partially loads when set by pattern) so it automatically does it meaning I can use the same browser for work systems which must be connected to by the work proxy, or blocked sites which go 127.0.0.1:55555 > PuTTY:D55555 > work proxy (only route for putty out) > SSH to OpenSSH server at home > internets :)

By default Gmail, YouTube and Facebook and many other sites are all blocked at my office. Using my working SSH connection with the remote DNS socks about:config setting you advised me of, Gmail and Youtube work all the time when I have FoxyProxy recognise to apply my proxy to them for wildcards like *://mail.google.com/* or *youtube* etc. Facebook is a different story, it will only work 100% with the SSH connection with the remote DNS socks about:config setting when I have FoxyProxy set to use not patterns, but that SSH tunnel ALL the time, it's not registering enough from the patterns *facebook*, and *fbcdn* - visible in FoxyProxy's logs or Firefox's Tools > Page Info > Media when you're on www.facebook.com. This is why I referenced Wireshark, to try find what FoxyProxy and Firefox are missing, specific to Facebook.

Doesn't an SSH tunnel created by PuTTY, and connected to my OpenSSH server running at home create a SOCKS5 proxy with encrpyted traffic? Spent the evening analysing Wireshark packets picked up when I access Facebook from home. Well what can I say, it is a bank holiday Monday here, everyone's out partying elsewhere but I think I'm pretty rock 'n' roll with my analysing of Wireshark packets!

Infiltrator you're a genius, many, many thanks! :) Okay, after confirming I do in fact have 'perform remote DNS lookups on hostnames loading through this proxy' enabled in FoxyProxy, and setting network.proxy.socks_remote_dns to true in Firefox's about:config, Facebook now loads fully, and consistently when 'Use proxy 'SSH tunnel home' for all URLs' is enabled (or when it's the single proxy enabled in Firefox's default proxy settings). The single remaining problem I have is getting it to work by pattern, as in I can set url wildcards for pages to be loaded automatically through one proxy or another. Having a rule set for every domain visible in Tools > Page info > media (when on Facebook) doesn't do it. i.e. *.facebook.com/* http://static.ak.fbcdn.net/rsrc.php/z7/r/5875srnzL-I.ico <- many media sources like this for which I created the rule: *.fbcdn.net/* It of course picks up the pattern partially as about 5/10% of what should load on the page does so, but somehow I am missing the source of some of the media on Facebook because it's still being firewalled/DNS poisoned. Is there anyway I can detect the domains I need to add a pattern for when on Facebook? (Those familiar with FoxyProxy may know there's an autodetect a firewall blocking feature, but this only works with strings of text like 'This webpage is prohibited' etc, not a small 'denied' graphic that appears in my case)

Thanks all for the info thus far. Dan, you are write in that I just want to learn. I mean I'm currently bypassing 90% of the firewall/DNS poisoning at my office for sites like Gmail and Facebook. I really won't have much time at all to be on them when at work, but I'm taking satisfaction from the fact of actually being able to do so, and knowing how it works! :) I'm just in the market for a phone and although the HTC Dream/G1 is old it's always appealed to me and I was wondering what sort of fun I could have with it. That said I'm very tempted by the upcoming HTC Desire HD. Basically, does much hacking with Android phones go on? I don't mean hacking of the actual OS, rather hacking or other networks one might encounter while they have their phone with them.

Thanks! That makes a lot of sense, and I can't wait to get in there and try it but unfortunately I won't be back in again until Sunday. Forgive me, but I don't see the relevance of the how to share files and folders in Ubuntu reference?

See that's the thing, I am able to SSH out once I use the on site proxy in PuTTY's connections to get the route out. I'm also able to then point Firefox at the SSH tunnel/proxy created on 127.0.0.1:55555 (or any port of my choosing) and all blocked websites work fine, except Facebook? Please see screenshot of Facebook when using my SSH tunnel. When using the office proxy I get a graphic with a pic saying 'Denied' and a direct connection just says all websites, including facebook cannot be displayed. There is an option it FoxyProxy to automatically add patters for the SSH tunnel, but it only searches for strings of text and unfortunately the denied message I receive is a graphic. This shouldn't matter though, because like I said the problem happens when I configure FoxyProxy to 'Use SSH tunnel home for all' so everything on the page, should in theory, be going through my tunnel home, not just parts of Facebook.