LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 09-24-2002, 03:47 AM   #1
Thaidog
Member
 
Registered: Sep 2002
Location: Hilton Head, SC
Distribution: Gentoo
Posts: 636

Rep: Reputation: 32
Question Running a sever w/o an IP address...


How can you run a server in "stealth mode" without an IP address? In other words... what do I have to do to to subtract the IP address of a server?
 
Old 09-24-2002, 04:52 AM   #2
Mara
Moderator
 
Registered: Feb 2002
Location: Grenoble
Distribution: Debian
Posts: 9,568

Rep: Reputation: 164Reputation: 164
AFAIK you can't. You can use port forwarding and use other machine's IP for connections, but without any IP, I don't think so.
 
Old 09-24-2002, 06:00 AM   #3
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,331
Blog Entries: 55

Rep: Reputation: 3529Reputation: 3529Reputation: 3529Reputation: 3529Reputation: 3529Reputation: 3529Reputation: 3529Reputation: 3529Reputation: 3529Reputation: 3529Reputation: 3529
Hmm. Would that be just configuring the nic w/o giving it any IP address? :-]
 
Old 09-24-2002, 06:21 AM   #4
Thaidog
Member
 
Registered: Sep 2002
Location: Hilton Head, SC
Distribution: Gentoo
Posts: 636

Original Poster
Rep: Reputation: 32
Quote:
Originally posted by unSpawn
Hmm. Would that be just configuring the nic w/o giving it any IP address? :-]
Can you give me a step by step? I'm not to hip to this thing...
 
Old 09-24-2002, 06:36 AM   #5
Mara
Moderator
 
Registered: Feb 2002
Location: Grenoble
Distribution: Debian
Posts: 9,568

Rep: Reputation: 164Reputation: 164
Quote:
Originally posted by unSpawn
Hmm. Would that be just configuring the nic w/o giving it any IP address? :-]
But what for? I can't think of a use of this.
 
Old 09-24-2002, 06:37 AM   #6
Mara
Moderator
 
Registered: Feb 2002
Location: Grenoble
Distribution: Debian
Posts: 9,568

Rep: Reputation: 164Reputation: 164
Quote:
Originally posted by Thaidog
Can you give me a step by step? I'm not to hip to this thing...
Thaidog, could you write what you'd like to do in a more detailed way?
 
Old 09-24-2002, 06:52 AM   #7
Thaidog
Member
 
Registered: Sep 2002
Location: Hilton Head, SC
Distribution: Gentoo
Posts: 636

Original Poster
Rep: Reputation: 32
Sure...

Quote:
Originally posted by Mara
Thaidog, could you write what you'd like to do in a more detailed way?
Sure... I was reading page 34 of this month's Linux Journal on how to use the app "snort" as a stealth logger... It explains that if your log server has no IP address, than it can't be hacked... in most basic terms... So it goes through this configuration scheme that I could not understand:

DEVICE=eth1
USERCTL=no
ONBOOT=yes
BOOTPROTO=
BROADCAST=
NETWORK=
NETMASK=
IPADDR=

Anyway, I'm still trying to understand the idea of a card with no IP address... and If I've already got that going on my OS X Jaguar box since I'm running my firewall in what it calls Stealth mode and running snort with NIDS... Or if I need to modify my connection settings... I hope this helps clear things up... ?
 
Old 09-24-2002, 07:33 AM   #8
Mara
Moderator
 
Registered: Feb 2002
Location: Grenoble
Distribution: Debian
Posts: 9,568

Rep: Reputation: 164Reputation: 164
Read the whole article. I suppse it says it quite clearly:
Quote:
The trade-off is systems without IP addresses must be administered only from the console, or must have another network interface with an IP address. If a system has multiple interfaces, two precautions are vital. First, IP forwarding must be disabled, and second, the interface with an IP address must be connected to a different network from the sniffing/logging interface. It could, for example, be connected to a dedicated ``admin'' network consisting only of NIDS probes, loggers and administrative workstations.
(taken from http://linuxjournal.com/article.php?sid=6222)
A server without an IP can't be your only one (in general). It's nice to keep logs on it, but not as a normal server. Just my opinion.
 
Old 09-24-2002, 09:43 PM   #9
stickman
Senior Member
 
Registered: Sep 2002
Location: Nashville, TN
Posts: 1,552

Rep: Reputation: 53
The Linux Journal article is a pretty good read. You can do similar things with an unplumbed interface on Solaris.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Obtain ip address and check for running process via Bash Script? xconspirisist Programming 10 09-12-2008 02:18 PM
how to get ip address, broadcast address, mac address of a machine sumeshstar Programming 2 03-12-2005 05:33 AM
SME sever emailssent Linux - Networking 5 11-01-2004 10:04 PM
I have a problem with running proftpd sever babyboss Linux - Networking 20 09-30-2004 10:19 PM
CVS repository running off my IP address ravalox Linux - Networking 2 07-13-2004 02:07 PM


All times are GMT -5. The time now is 06:38 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration