View previous topic :: View next topic |
Author |
Message |
senectus Guru
Joined: 17 Jul 2003 Posts: 534
|
Posted: Wed May 26, 2004 2:57 am Post subject: Must have server tools? |
|
|
For a SOHO gateway/router/firewall/webserver/ftp server setup (yes I know how bad this is) what are some usefull or must have tools?
(recommendations) _________________ 2800+XP A7N8X FX6600GT
www.modmeup.net |
Belief is 9/10 of YOUR reality.
Wise man say: A skilled troll is a master baiter. |
|
Back to top |
|
|
moocha Watchman
Joined: 21 Oct 2003 Posts: 5722
|
Posted: Wed May 26, 2004 7:00 am Post subject: |
|
|
tcpdump, ping, and telnet. _________________ Military Commissions Act of 2006: http://tinyurl.com/jrcto
"Those who would give up essential liberty to purchase a little temporary safety deserve neither liberty nor safety."
-- attributed to Benjamin Franklin |
|
Back to top |
|
|
JeffBlair Apprentice
Joined: 23 May 2003 Posts: 175 Location: USA, Lone star state
|
Posted: Wed May 26, 2004 6:31 pm Post subject: |
|
|
I would say apache/proftpd/webmin |
|
Back to top |
|
|
BlackEdder Advocate
Joined: 26 Apr 2004 Posts: 2588 Location: Dutch enclave in Egham, UK
|
Posted: Wed May 26, 2004 7:39 pm Post subject: |
|
|
telnet?? autsj... ssh |
|
Back to top |
|
|
moocha Watchman
Joined: 21 Oct 2003 Posts: 5722
|
Posted: Wed May 26, 2004 7:56 pm Post subject: |
|
|
Telnet is the TCP connectivity test tools (need I mention manual HTTP requests?). Never said one should use it for auth. _________________ Military Commissions Act of 2006: http://tinyurl.com/jrcto
"Those who would give up essential liberty to purchase a little temporary safety deserve neither liberty nor safety."
-- attributed to Benjamin Franklin |
|
Back to top |
|
|
Fitzsimmons Guru
Joined: 01 Jan 2003 Posts: 415 Location: Waterloo, Ontario, Canada
|
Posted: Wed May 26, 2004 9:27 pm Post subject: |
|
|
moocha wrote: | Telnet is the TCP connectivity test tools (need I mention manual HTTP requests?). Never said one should use it for auth. |
I concur. |
|
Back to top |
|
|
BlackEdder Advocate
Joined: 26 Apr 2004 Posts: 2588 Location: Dutch enclave in Egham, UK
|
Posted: Thu May 27, 2004 7:06 am Post subject: |
|
|
Fot ftp server we use proftp and webserver apache. Both are very stable. |
|
Back to top |
|
|
Kope Tux's lil' helper
Joined: 17 May 2004 Posts: 136
|
Posted: Fri May 28, 2004 3:11 am Post subject: |
|
|
i'd use nessus over tcpdump. Tcpdump is evil ... seriously. _________________ "Computers are useless -- they only give you answers!" -- Pablo Picasso |
|
Back to top |
|
|
moocha Watchman
Joined: 21 Oct 2003 Posts: 5722
|
Posted: Fri May 28, 2004 4:06 am Post subject: |
|
|
Kope wrote: | i'd use nessus over tcpdump. Tcpdump is evil ... seriously. |
You're a bit confused on this, it seems.
Nessus is a vulnerability scanner. You'd use it to remotely assess your vulnerability exposure.
tcpdump is a network analyzer / packet sniffer. You'd use it to diagnose connectivity problems, quickly view traffic patterns, and so on and so forth.
They're very different tools with very different purposes and you wouldn't normally use on in place of the other. Please read up a bit on both of them. _________________ Military Commissions Act of 2006: http://tinyurl.com/jrcto
"Those who would give up essential liberty to purchase a little temporary safety deserve neither liberty nor safety."
-- attributed to Benjamin Franklin |
|
Back to top |
|
|
cwt137 Tux's lil' helper
Joined: 25 Jul 2003 Posts: 99 Location: Southern California
|
Posted: Fri May 28, 2004 4:31 am Post subject: |
|
|
Webmin is a must. If you want an evil app, try ethereal. |
|
Back to top |
|
|
Kope Tux's lil' helper
Joined: 17 May 2004 Posts: 136
|
Posted: Fri May 28, 2004 5:38 am Post subject: |
|
|
moocha you're right.
I had a brain fart and typed 'nessus' when I meant to type Ethereal.
I do know the difference between them..but my fingers just type what they want
I don't know if is still the case or not, but tcpdump used to have some nasty bugs when used on high traffic sites. Especially if you enabled name resolution. You could bring down enterprise class hardware with the memory leak in that thing _________________ "Computers are useless -- they only give you answers!" -- Pablo Picasso |
|
Back to top |
|
|
moocha Watchman
Joined: 21 Oct 2003 Posts: 5722
|
Posted: Fri May 28, 2004 6:39 am Post subject: |
|
|
Oh, yup, I use (t)ethereal quite a lot. But I wouldn't consider it essential because of one tiny characteristic - it's bloody huge . Wouldn't want to see it on a slim router. Other than that - you're perfectly right, it's one of the most useful tools around.
Edit: tcpdump's quite stable now, especially 3.8.2 (or 3, it's the same). The leaks were actually in libpcap. As to reolving - enabling name resolution on a high-traffic link is suicide anyway... How to DoS your DNS server, step 5 _________________ Military Commissions Act of 2006: http://tinyurl.com/jrcto
"Those who would give up essential liberty to purchase a little temporary safety deserve neither liberty nor safety."
-- attributed to Benjamin Franklin |
|
Back to top |
|
|
Kope Tux's lil' helper
Joined: 17 May 2004 Posts: 136
|
Posted: Fri May 28, 2004 5:00 pm Post subject: |
|
|
Oh... hping!
The ability to craft malformed packets is increadibly usefull in debugging. _________________ "Computers are useless -- they only give you answers!" -- Pablo Picasso |
|
Back to top |
|
|
xces Guru
Joined: 11 Oct 2002 Posts: 515
|
Posted: Fri May 28, 2004 5:42 pm Post subject: |
|
|
moocha wrote: | Telnet is the TCP connectivity test tools (need I mention manual HTTP requests?). Never said one should use it for auth. |
Ever heard of netcat? Sure, for most things the telnet-client will do, but netcat is more powerful. And if you have the choice between telnet and netcat, I'd choose netcat any time. |
|
Back to top |
|
|
moocha Watchman
Joined: 21 Oct 2003 Posts: 5722
|
Posted: Mon May 31, 2004 8:27 pm Post subject: |
|
|
xces wrote: | Ever heard of netcat? Sure, for most things the telnet-client will do, but netcat is more powerful. And if you have the choice between telnet and netcat, I'd choose netcat any time. |
Yup, I actually use it to quickly set up a proxy when needed - it can do amazing things. But nothing beats the availability of plain old telnet _________________ Military Commissions Act of 2006: http://tinyurl.com/jrcto
"Those who would give up essential liberty to purchase a little temporary safety deserve neither liberty nor safety."
-- attributed to Benjamin Franklin |
|
Back to top |
|
|
Kope Tux's lil' helper
Joined: 17 May 2004 Posts: 136
|
Posted: Tue Jun 01, 2004 11:55 pm Post subject: |
|
|
/agreed.
Telnet is to a network troubleshooter what a screw driver is to an auto mechanic. It's simply the first tool you reach for.
If nothing else, it's very usefull for poking around . . .
That said, there's really an increadible number of high quality tools out there for network stuff, and probably every network engineer has a different top-10 . But you'll find lots of people that include nmap, nessus, hping, telnet, netcat, tcpdump, snort, dns-tools, and ssh in their lists. _________________ "Computers are useless -- they only give you answers!" -- Pablo Picasso |
|
Back to top |
|
|
kashani Advocate
Joined: 02 Sep 2002 Posts: 2032 Location: San Francisco
|
Posted: Thu Jun 03, 2004 5:48 am Post subject: |
|
|
nmap - for port scanning
telnet - for basic connectivity testing
curl - for testing http
sysstat - for iostat and vmstat
strace - for when things are really screwed up
tcpdump - for basic packet capture
netcat - because it is the swiss army knife of tcp/ip
lsof - for finding those open files
whois - for doing whois lookups
bind-tools - for dig and nslookup
expect - for scripting interactive programs
traceroute
tcptraceroute - for when bastards have messed with ICMP
lrzsz - for old school Z modem transfers
screen - for picking up where you left off
vi - becuase pico/nano blow
lynx - for basic web browsing
ncftp - becuase it's better than the other clients
pine/mutt/ - your CLI mail reader of choice
gentoolkit - makes working with portage easier
iputils - ping, tftp, etc
kashani _________________ Will personally fix your server in exchange for motorcycle related shop tools in good shape. |
|
Back to top |
|
|
|