Is Rendezvous Sharing More Than You'd Like?

Gropo asks: "I just got an email from my father who has just recently upgraded from OS 9 to Mac OS X on his PowerMac. He's connected to the 'net via Adelphia Cable and shares his TCP connection with my Mother's iMac via Software Base Station. He got a call from his neighbor (also running Mac OS X) who noticed 'My Father's Computer' show up on his network. My first thought was: 'He's picking up your AirPort signal' - alas the neighbor has no AirPort card. The neighbor *does* however also have an Adelphia cable modem. I asked him to scan for available afp:// servers and sure enough, a foreign machine showed up. What's the easiest way (if at all possible) to enable auto-detection for the local wireless LAN (useful for file and printer sharing within the household) yet remain invisible to other people also behind the cable companies' local DHCP box?"

Erm.

[Atzanteol]

Firewall? Isn't this the same issue one would have with Windows file-sharing?

Re:Erm.

[poiuyt23]

That's the best answer - another one is to use the built in firewalling of the internet connected OS X box. Look here. In the long run though I thought it was easier to spend like 100 bucks and get a cheap wireless Router / Firewall setup.

Leaving the blinds open...

[MacAndrew]

Kudos to the honest and helpful neighbor, but I have to assume they didn't figure out "My Father's Computer" was your father's computer without some additionnal snooping. How much did they read? They did the right thing, of course assuming they read no more than necessary.

Cable modems do have privacy issues, don't they? Mine is on the other side of an SMC firewall which (I hope I will not be instantly disabused!) is protection....

Re:Leaving the blinds open...

[sebi]

Maybe, just maybe, the machine was not literally 'My Father's Computer'. It could have been 'Gropo senior's Computer' or 'Name withheld from public slashdot discussions' Computer'. You pick.

Re:Leaving the blinds open...

[Gropo]

Bingo...

Passwords

[andcarne]

If you really don't want to use a firewall, you can always just give computer a meaningless name, and password protect all users on it.

Re:Passwords

I don't understand why someone wouldn't install a NAT box (technically not a firewall). They are easy to install and cost almost nothing. Why take the risk?

Re:Passwords

[Llywelyn]

You have no choice under MacOS X but to password protect all users and all connection protocols are turned off by default. You would have to specifically enable sharing and remote login and even then the password is still there.

Re:Passwords

[JJahn]

Probably because they don't know better.

Re:Passwords

[andcarne]

Of course, I am assuming that they have sharing turned on so it can bu used between the computers. Also, you can have guest access set up, which I assume he was since the neighbour was able to get on and find something telling who the computer belonged to.

Re:Passwords

If they're both Mac-using neighbours, and the neighbour had the dad's phone number in order to call him, he probably recognized the computer's rendezvous name when he saw it. Mac OS X wouldn't let him log on without a password, unless the father had made a public folder available.

Re:Passwords

[TwP]

With OSX, each user also has a public "drop box" that is visible and world writeable via Rendezvous. The intent is to have someplace where other users can give you files to look at. Leaving this open to the internet at large is just asking for someone to come along and fill your hard drive with junk.

Two solutions: (1) remove the public drop box; (2) limit the total number of bytes that folder can contain. The former is quite easy. I'm not too sure how to acheive the latter.

And, of course, just put your machine behind an AirPort base station (whic has NAT capabilities).

Re:Passwords

[diverman]

This doesn't address the issue of all Rendezvous sharing. Sure, it handles actual file sharing, but not printer sharing.

Is there a way to PW protect the printer share, so that it shows up, but you're prompted for a PW (save to keychain if you like)?

-Alex

Re:Passwords

[Llywelyn]

"With OSX, each user also has a public "drop box" that is visible and world writeable via Rendezvous. "

True, IFF you actually enable it. That being said, simply being *writeable* isn't a problem, you can clean it out without *any* difficulty.

If you need more a more secure setup, these can also be enabled with the click of a button--all up to how you want to handle it. I also *think* you could also chmod it to prevent anyone from writing to it, but that's another matter.

Re:Passwords

[azav]

Attach an applescript to that folder that deletes all contents upon a change of contents.

I could not get this to work 100% of the time on my g3 400 but it's not TOO hard to do.

contact me if you want source.

Re:Passwords

[sco08y]

sudo rm -rf Public is too hard?

Re:Passwords

[azav]

Yep. Especially since I have no idea what that means.

Services

[rbbs]

In this particular case the problem is appletalk routing. Since you are creating a local subnet using the PowerMac as the router, you probably have appletalk activated on the wrong network interface. It needs to be on the Airport ethernet only and not on the wired connection. It can only be on one at a time so just switch it. - incidentally this won't change your ability to share info with the airported computer. You could also try blocking access to the appletalk port (548 IIRC) on your built in firewall. Alternatively, get a proper hardware firewall and use that to mask your subnet. Ultimately you need to be careful what services you enable on which interface as one of them is visible to the world and one isn't.

Re:Services

Afaik, port 548 is what AppleShare uses, not AppleTalk. AppleShare can run over TCP/IP or AppleTalk; but AppleTalk doesn't run on a TCP port because it isn't a TCP service (it's a different transport protocol itself). So if this is an appletalk issue, port 548 has nothing to do with it. I thought it was a rendezvous issue myself; i sometimes forget people still might use appletalk though.

Re:Services

[mkldev]

It would be more accurate to say that port 548 is AFP (the appletalk filing protocol) over TCP. AppleShare is an old term that refers to the sharing servers that existed prior to personal file sharing, and is basically deprecated. AFP refers to the low-level protocol itself.

AppleTalk historically can refer to either the family of protocols or to DDP (datagram delivery protocol) that is used for non-TCP AppleTalk communication. In the context of pretty much everything but the network pane in Mac OS X, AppleTalk refers to the protocol family. In that single case, it refers to DDP binding to a particular interface, and the less-descriptive use of the word "AppleTalk" is retained for historical reasons to avoid confusion, AFAIK.

In other words, you're both right, kind-of.

Re:Services

I doubt the problem is Appletalk.

First, Appletalk is disabled by default on OS X systems. (Yay!) File sharing uses TCP/IP by default, with Rendezvous providing automagic discovery of AFP servers.

Second, since in cable systems everyone in the neighborhood (or cable branch anyway) is on the same subnet, this is exactly how you'd expect Rendezvous to operate.

Rendezvous can be disabled through /Applications/Utilities/Directory Access, but that's an undesirable "fix" since first, Rendezvous is useful on the the local net, and second, it doesn't really protect the server, just adds a small measure of obscurity.

Regrettably, the GUI firewall interface in System Preferences doesn't support configuring per-interface filters. The choices would seem to be (a) easy though not free (though cheap) get a cheezy dedicated firewall box like the Linksys BEFSX41 or any of the other cast-of-thousands, problem solved. (b) Free or cheap and probably not too hard, find a third-party GUI configurator for Mac OS X's built-in ipfw. (Typing "firewall" into versiontracker gives a list of options, sunShield for instance seems to do the needful.) (c) Free and highest geek factor, just write your own rc.firewall rules. Whichever of these is used, simply blocking all incoming connections on the en0 side ought to do the trick, though also blocking outgoing Rendezvous would be a bonus. (Correct rule to do this left as an exercise to the reader.)

Re:Services

[sco08y]

It's just Apple Filing Protocol, which is just the new term form AppleShare.

Some rough equivalences:

AppleTalk ~~ NetBIOS ~~ TCP

AppleShare == Apple Filing Protocol ~~ SMB == CIFS

Not Rendezvous

[rbbs]

PS I don't think this has anything to do with Rendezvous.

Re:Not Rendezvous

[pldms]

PS I don't think this has anything to do with Rendezvous.

Agreed. Rendezvous broadcasts must never be routed, but AppleTalk packets can. Maybe this can be set on the base station?

Re:Not Rendezvous

[pldms]

Nuts - misread the set up. Actually I think this may be possible with rendezvous. The packets wouldn't need to be routed to the neighbours.

With cable modems, IIRC, you're on the same subnet as your neighbours.

Does that sound plausible?

Re:Not Rendezvous

[Gropo]

Why, then, after 3 years of using this very Cable service has a strange Mac never shown up under the Chooser?

Re:Not Rendezvous

[rbbs]

maybe it never had appletalk switched on to access the ethernet port before?

Re:Not Rendezvous

[bsartist]

What we have here is a practical demonstration of precisely why "Security Through Obscurity" isn't reliable.

AppleTalk over IP doesn't support auto-discovery the way traditional AppleTalk does. In other words, the file share has always been there, and you could have mounted it via Chooser at any time, if you had known its IP address. If you doubt it, reboot both Macs into Mac OS 9 and give it a try.

What Rendezvous does is remove the need to know the IP address. It's not directly related to file sharing, that's simply one of the many services it can be used to advertise and/or discover on the local network segment. Rendezvous is simply Apple's name for ZeroConf, aka Multicast DNS.

Buy him a router

[sg3000]

Rendezvous is designed to work on a subnet, and likely your dad and his neighbor are on the same subnet, thus the inintended sharing.

Since he has a broadband connection, I'd recommend that you buy him a router, so that all of his Rendezvous packets stay in his house. No muss, no fuss. And routers can be as cheap as $30 -- I just bought a cool NetGear router to replace my LinkSys and it cost about $50. With the router, he can have multiple computers on his network, keep his LAN separate from the WAN, and have some basic security protection above and beyond the built-in firewall in Mac OS X.

Or you can convince him to buy a new AirPort base station that has a built-in router so he can solve his problem as well as allow you to surf the 'Net on your PowerBook while you're over visiting.

To me, it's a short threshold to come up with an excuse to buy sexy new Apple hardware.

Re:Buy him a router

[Mikey-San]

If you're on broadband, I say you should buy a router anyway.

There's nothing like a hardware firewall and your own private subnet as a line of defense, and there's nothing like being cracked and raped until you'r raw. I'll take the former, thankyouverymuch. :-)

-/-

Blah. Stupid. And Blah.

[trouser]

I suppose Rendezvous probably finds other Rendezvous enabled machines on the local subnet. Looking in System Preferences I can't see any way of limiting that by device (eg. ethernet but not modem) nor limiting it to specific IP address ranges.

Also, the firewall configuration pane seems to be completely useless. If I'm reading correctly it seems that when I start the firewall it denies connections to any port not in the list displayed in the config pane. The list includes all the services I'm running. So if any kind of file sharing or remote access is enabled the firewall allows access to it from anywhere. The only way to prevent access is to shutdown the service. I can't make file sharing available locally without it being available globally.

Fortunately there are other options for firewall configuration. ipfw is installed by default. Might be worth reading the man page.

Re:Blah. Stupid. And Blah.

[rbbs]

ipfw rules sudo ipfw add 08800 deny tcp from any to any portnumber in via en0 for wired connections If i remember correctly... You will have to edit the ipfw file to get it to remember this on startup though... sudo pico /etc/ipfw.conf

Re:Blah. Stupid. And Blah.

[billDCat]

Take a look at BrickHouse, an interface for configuring the rules for ipfw. It provides a combination of a simple interface that still provides much more flexibility than the interface that Mac OS X gives you, plus conveniently allows you to edit the rules in the configuration file manually if you wish. Yah, you could do this using $EDITOR_OF_CHOICE, but I find this more convenient.

Re:Blah. Stupid. And Blah.

[rbbs]

Looks genuinely useful here is another selection Search Result

mac attack

[Michael.Forman]

there once was a power mac
on the net i thought i'd hack
i was stunned to see
it ran bsd
my plans were thus set back


Michael.

sh: /usr/bin/fortune: not found

NAT?

[jeblucas]

Your father isn't NAT'd by his Cable modem at all? I have DSL into an Airport Base Station and the NATing inherent to that is enough to keep my neighbors at bay. I would think there had to be some measure of this capability in the modem. If not, can he not just finagle the settings in the Sharing control panel to limit access? It shouldn't affect his Software Base Station at all.

Re:NAT?

[godzilla808]

DSL is different, you aren't sharing a subnet with neighbors in the same way that you are with a cable modem. You get your IP from the ISP's DHCP server, not the modem.

Any cable modem user would have the same problem

[superposed]

Cable modems are notorious for creating security openings. In many cases, you and all the other computers in your neighborhood are bridged onto a single network. So it's the same as if you were on one big LAN.

This issue affects your dad's computer whether or not your mom's computer is connected via it (the in-house network is just an extra wrinkle).

So you need to do a careful job of insulating your dad's computer from the outside network. Start by turning off all unnecessary services that could be carried on the Ethernet adapter. (i.e., make sure these services are not allowed to communicate over the Ethernet adapter. It's fine to let them run over the Airport adapter if your software base station is configured correctly, but you will have to discriminate between the two). OS X does a pretty good job of not loading too many services in the default configuration. But you can fine tune what's going on using OS X's internal firewall. You should also turn off any file or printer sharing on the Ethernet adapter (using the Sharing preference panel). I'm not sure whether you can turn off Rendezvous on one particular adapter, but if you can, that would be a good idea too.

Another way to restrict data from being sent over the Ethernet connection out to your neighbors, would be to install firewall or routing hardware between your Dad's computer and the cable modem. Then you won't really have to worry about reconfiguring your dad's computer at all. Anything that is labeled for "cable modem sharing" or "DSL connection sharing" should work fine for you. However, if you're going to get a connection sharing box, you might as well get one that can provide a connection directly to both your dad's computer and your mom's, so hers doesn't have to go through his to get to the Internet. There are plenty of cable modem routers out there that also include 802.11b support, and any of these should solve all your problems at once (i.e., they will hide your computers from your neighbors, and they will allow both of your computers to connect to the Internet independently via Airport or Ethernet). Apple's Airport base station is particularly nice, but there are other boxes in the $100 range that will work fine.

DSL, my man ...

1) Firewall

2) Password protection shares

or

3) Switch to DSL. It's not shared like cable.

Re:DSL, my man ...

[Aptitude+Dude]

hard to imagine DSL is a good solution to anything.

It's easy to fix...

[dotgod]

Just apply the patch. ;-)

Re:It's easy to fix...

[osguru]

Yellowdog linux isn't that far ahead of the pact, if it all... Here's the deal... Linux can be just as multimedia rich as a OS X. Mac OS X can be just as stable as Linux. Linux can be made just as insecure as Windows. Windows can be made more secure than OpenBSD. I can run Linux apps on OpenBSD. OpenBSD has encrypted swap space. I can patch Linux to have an encrypted swap space. Freebsd uses IPFW I can make FreeBSD use PF The point is it all comes down to how much effort you want to put into it... Saying its an easy fix is like those people who switch from Redhat to Mandrake because their printer wouldn't work on Redhat but does on Mandrake (an actual posting I read somewhere). Don't switch your OS based on one stupid feature that with 30 minutes effort you could have gotten running on your own.

It is obvious what is wrong

Hehe - classic cable modems that show all the machines on a loop as part of a subnet.

Rendevous Web Servers

[grouchomarxist]

Recent versions of MacOS added rendezvous support to web servers, so you can automatically detect those web servers using Safari. As a result I came across a co-worker's web site and saw some rather racy web sites that he was working on in his spare time.

So yes. Rendezvous just might be sharing more than you'd like!

Common problem

[DiSKiLLeR]

This is a common problem, and is not specific to Mac OS X. If your father had been running windows, your neighbour would find your fathers windows shares on his Windows or Mac OS X box.

The solution? Firewall.

Read up on ipfw. Its the nice firewall FreeBSD uses and Darwin/OSX has it too.

A few simple rules (default to deny etc) and you will be locked down tight.

D.

Re:Common problem

[Mikey-San]

I question whether or not this guy's father will want to learn the ins and outs of ipfw.

Perhaps using the GUI firewall controls in System Preferences:Sharing:Firewall is a better way to go, at least for starters. It may be overly simple for many people, but it's perfect for those for whom scrolling through the ipfw man pages is a bit daunting.

-/-

Re:Common problem

or use brickhouse (too lazy for a link... search versiontracker.com)

Re:time to "switch"

[JJahn]

Except SMB is just as bad. Oops...

Talk about unlikely...

[Big+Sean+O]

Two guys, neighbors, both running Jaguar, both on the same cable modem subnet.

I mean, what are the odds? They're so low to be trivial! :-)

(Caveat: I've been a Mac user since 1984, so this slam is just good natured ribbing...)

Re:Talk about unlikely...

[Johnny+Mnemonic]

I'm a pro Mac user, and I actually thought the same thing on the first read-through. Wish I was a support guy in his neighborhood!

Re:Talk about unlikely...

[sg3000]

> Two guys, neighbors, both running Jaguar, both on the
> same cable modem subnet.

> I mean, what are the odds?

I was thinking the same thing. I think the odds are better that one has two convicted sex offenders on the same subnet than two Jaguar users.

However, I think this is starting to change. At work, in my immediate area, the number of people buying new Macintoshes is starting to increase. The top cited reasons? In no particular order:

1. The new iMac
2. The fact that it "just works." It's funny to see a new Mac user who's been using Windows for years get kind of a confused look on their face, and say, "I can't explain it, but it just works."
3. Mac OS X and its Unix underpinnings -- this seems to influence the more technical people
4. Microsoft's copy restrictions in Windows XP. It surprises me how many people are turned off by this. Not that they're out pirating software or music or anything, but they mention that they just don't like it.

Re:Talk about unlikely...

At work and at school, I'm surrounded by new mac users. I start to wonder if to make the stats work out, there are huge swaths of the country where no one buys macs at all.

I'd say in the last year, 10 people I know have switched to mac, and none of the mac users have switched away from it. Almost everyone I know uses a mac as their main computer. Primarily they seem to be motivated by reason 2, with a handful of technical people motivated by reason 3. Also, everyone loves the design of the portables and the iPod integration w/ iTunes.

always use a firewall

[fermion]

My understanding is that everyone on a particular cable network, i.e. neighbors, shares the same network and the same pipe. It is one of the major disadvantages of cable. Since the purpose of Rendezvous is to transmit connect information to everyone on the network, this is the expected result. I think it may be a basic security flaw as significant as the Windows problems, especially if the service is turned on by default, shares the resources by default, and uses weak default passwords.

I think we really need to educate everyone that a firewall is always needed between the home computer and broadband connections, even if there is only one computer connected. The ISP are not providing the firewall with the modems because they want to sell that service for more money, if they want to allow it at all.

Of course all the other rules apply. Turn off all services that are not needed. Use good passwords on the services that are. I am afraid that Apple is going down the road of reduced security and feature bloat.

IP over powerlines

[goombah99]

I would guess that IP over powerlines is going to have the same issue. namely unless every transformer has a packet switch then everyone in the neighborhood is going to be basically on a shared hub and hence share bandwidth and share their underwear too.

something to try

[Aram+Fingal]

One specific thing you may want to try with a firewall is blocking packets to 224.0.0.251. I've been using MacSniffer to monitor the traffic on my own home lan to see what I might need to do security-wise and noticed packets going to this address periodically. After some searching, I found that this is probably Rendezvous activity. See this article.

ok

[papasui]

I'm a network specialist for a cable company, the problem is probably that both machines ended up on the same subnet and since there's no router (i'm assuming) it goes out and hits the ubr and just like it would on a lan and shares with your neighbor.

Airport

[red5]

People above have mentioned using a NAT/firewall. You also mentioned that your dad has a airport base station. AFAIK a Base Station is capable of being a NAT/firewall. So I'd just use that. You won't even need new hardware.

Re:Airport

[mlh1996]

Actually, he said "software base station," which means that dad's Mac is acting as the access point and NAT'ing for Mom's Mac. That's why mom's mac didn't show up on the neighbor's network.

Of course, Dad's Mac is perfectly capable of acting as the firewall in Jaguar, too, so your point about not needing new hardware is correct.

Re:Airport

[EMDischarge]

He mentioned his father was using a SOFTWARE Base Station; i.e., he is sharing his internet connection through use of an airport card in the computer connected to the broadband connection.

Re:Airport

[red5]

EMD you're so smart. You can take what the other guy said, wait seven hours and regurgatate it. I whish I could be cool like you, but alas my moma doesn't dress me like a girl.

Re:Airport

[red5]

Thanks I stand corrected

same deal

[bobba22]

I had the same issues under 9.x.x until I got an ABS. We had 5 or 6 macs on our subnet. Don't get too paranoid about this - sure - secure your most vital files etc...then pool resources. It's like super fast P2P.

what's the problem exactly?

[davesag]

so your dad's mac is visible to his neighbour - big deal. assuming it's set up using the default permisions all your neighbour will be able to do is log in as a guest and drop files into his drop box. (/Users/${yrdad}/Public/Drop\ Box/) - now sure the neighbour could start filling that drop box with p0rn or whatever but if that'sa real concern then change the perms on the drop box. on the other hand yr dad could just be a good neigbour and make a shared volume of system upgrades, has equiv access to the neighbours drop box and they can both share itunes/ichat/iconquor/etc etc and get the some benefit out of having nice seamless integration with the neighbour. for what it's worth i always leave a "whoseMacIsThis.txt" file in my drop box so strays who happen to wander into my mac can quickly work out who i am and contact me if needs be.

on the topic of open macs hwoever, if you happen to be in central london someday with some spare time, just sit down at bar italia on frith street soho, pop on yr wifi and see how many drop boxes you can visit. i found at least 5 open wifi networks and each one of those exposed lots of macs. didn't find any ichat users tho... but plenty of rendesvous (or liberty connector as i hear you merkins prefer nowadays) shared web sites (99% default index pages).

oh and if you really wanna get into closed wifi networks remeber there is always KisMAC.

enjoy

Re:what's the problem exactly?

[Gropo]

No, it's really not a big deal.

The built-in firewall's been set up to only allow printer and file sharing, and the neighborhood in question is a quaint suburban/rural safety zone.

On the other hand, if I found the same thing happening here in the Big City I might be a little bit more paranoid, and would likely get a Linksys to cap it off. I was curious if there was a way to 'anonymize' the machine without resorting to hardware firewalls.

Re:something to try -- disable Rendezvous

[anothermortal]

Or you can disable Rendezvous via the Applications/Utilities/Directory Access application. I suppose, if you don't need Rendezvous, you should probably turn it off. And if the problem is AppleTalk, like someone said, you can only use AppleTalk on one interface at a time. Though, I'd disable everything install a wireless router, and connect to computers via IP only.

Re:time to "switch"

[Gropo]

Wow, hilarious. Guess what? Dad started out in the industry by programming tabulation machines in the 60's, later IBM mainframes, partnered in a business renting time on Harvard's mainframe to calculate regional school system schedules and even co-authored a Lord of the Rings game for the MiniPDP he'd bring home to us on weekends back in the early 80's.

I don't think he needs some greenhorn pissant telling him what platform best suits his needs.

Get dad a secure Windows XP machine.

SOMEONE SET UP MY DAD THE RAW SOCKETS

Try again, dingleberry.

ROFLAHLJKSLGHALGAHHAHAH

[Mikey-San]

"Liberty Connector"?

That's the funniest freakin' thing I've heard so far this week. :-)

-/-
Mikey-San

Rendezvous or Appletalk?

[alangmead]

You could check if the problem is Rendezvous by sending your father DockBrowser (perhaps by compiling it up for him first.) This should only show the machines available via Rendezvous.

You could check if it was Appletalk by loading up chooser in Classic mode, perhaps with the Who's There rdev. It should only show machines available via Appletalk

You could disable appletalk in the ethernet interface connnected to the cable modem (Its in the Network pane in the System Preferences app.) and leave it on in the Airport interface.

"Get dad a secure Windows XP machine"

mwahahahahahahahahahaaaaaargh !
-gasp-
secure
-grnt-
windows
-sngggggnghh-
XP
-kspl-
mwohaaaaahahahahahahahaaaaaaaaaagagag agaaarghl

The facts!

[diverman]

Yeah. That was my first thought.

Why are people STILL using DSL and Cable modems without a Firewall??? They are there to protect you not just from those malicious people out there, but your own lack of understanding of computer security. This isn't meant to be a slam on anyone.. just a realistic fact that most people don't understand what's involved in network security.

-Alex

Re:time to "switch"

Get dad a secure Windows XP machine.

So how come my neighbor's XP machine shows up if I set my workgroup to "Workgroup"? Hmm??

Nothing to do with Rendez-vous

[ElGanzoLoco]

Cable ISP's sometimes build their networks like LAN's. This aparently fools some macintoshes into thinking that it is, in fact, a LAN. I used to be able to see some macintoshes of my neighbourhood, until they fixed the problem.

Suggestion

[metamatic]

You found evidence that your co-worker is building a pornographic web site on company computers, on company time? A little blackmail ought to buy you a new Mac or two...

No Passwords

[kwerle]

I have set up half a dozen accounts with no password. Just don't enter a password. It does warn you, but other than that...

Rendezvous traffic should not route off the link

[Simon+Spero]

Rendezvous uses Multicast DNS (mDNS) to find and announce services. Multicast DNS uses a link-local multicast address, which means that routers should never forward mDNS packets from one link to another.

Simon

Re:time to "switch"

Gropo, how many times have I told you not to harsh on people, even if they are dickheads!

I am gropo's dad, and the reaso)

Re:time to "switch"

[dynayellow]

secure Windows

Military Intelligence
Peacekeeper missle
Creation science

One more to add to the list!

iTunes aplenty then?

[davstein]

So, with Rendezvous on, you could potentially have a TON of iTunes libraries at your disposal, right?

Old news? for me at least

[revitup.org]

I have seen this behavior ever since OS X Public Beta. At the time, I was on Charter Communications cable internet service, and slowly but surely I started to see other people's computers available in the 'Connect To Server?" dialogue.

At first it was only one person's computer, but as other releases of OS X came out (1.x, etc.) there were more and more people visible on the network.

That said, this was well before Rendezvous entered the picture, so it's probable that it is AppleTalk related.

But, I am pretty sure that if you have your users password protected, people can't access info from your computer - unless it's in your public folder.

Maybe a Firewall would help?

Re:time to "switch"

Gropo's dad again. The earlier mail got truncated, so you can see how my antediluvian geekness has deteriorated. Don't know what happened to it (the mail that is). I was also unable to establish an account on this site (a further measure of my ineptness).

The reason my computer showed up next door was due to the LAN created by my (cable) ISP. I share this with the neighbor. My computer was identified as "my-names-computer", so it is no mystery how my neighbor recognized it.

He is a dentist and even less Mac knowledgeable than I, but he knows how to dial the phone, so he gave me a call.

My latest problem is that Mail doesn't seem to allow me to set up an account that uses one site for sending (my cable isp) and another for receiving (another POP server). Outlook express was quite happy with this arrangement ,but it is not obvious how to accomplish this using the control panels for Network setup and/or Mail Account setup.

Thanks for all the suggestions for resolving my other problem. I changed the "name" of my computer and turned on the firewall, so I feel relatively secure here in my bucolic surroundings.

Websharing is on over dial up

[mmphosis]

see these entries in my /var/log/httpd/access_log

218.19.158.252 - - [10/Apr/2003:22:32:10 -0700] "GET /default.ida?XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX%u9090%u6858% ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u6858%uc bd3%u7801%u9090%u9090%u8190%u00c3%u0003%u8b00%u531 b%u53ff%u0078%u0000%u00=a HTTP/1.0" 404 271
80.142.23.152 - - [11/Apr/2003:21:03:56 -0700] "GET /scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir+ c:\\ HTTP/1.1" 404 309

Here's a web page I use to handle these exploit attempts

Re:Websharing is on over dial up

[sco08y]

Those attempts are being made either by a worm or some automated script. No human being is actually going to see them.

If you want to block them:

http://www.leekillough.com/robots.html

Re:something to try -- disable Rendezvous

[bsartist]

Or you can disable Rendezvous

Security through obscurity does not work. Rendezvous is not providing the open file share, it's just advertising it. If you disable Rendezvous, the file share is still open and active - the only difference is, anyone who wants to mount it will need to know its IP address.

Re:time to "switch"

hi, gropo's dad

Re:time to "switch"

[Gropo]

Heya dad. (yep this is indeed my father)

As you can see as indicated from posts below this thread, it appears that AppleTalk would broadcast to/from the neighbor under OS9, and this isn't infact an OS X/Rendezvous peculiarity.

I'm trying to figure out the Mindspring/Earthlink POP server deal... Try looking for AppleCare documents with Sherlock.

Mail problems...

[sendai2ci]

heya Gropo's Dad...
have you figured the mail problem yet? I can see all the options necessary to change my outgoing and incoming mail servers...there doesn't seem to be any thing preventing me from changing them to my hearts content...

I have had experience with ISPs that prevent me from sending mail through them if I am not currently connected through them...though reading previous posts it seems that you--or your son--would have already considered that...

Re:something to try -- disable Rendezvous

[sco08y]

And another point: they can find it with a simple portscan, so it's not even particularly obscure.

Simple disable Appletalk

[Krashed]

Simply disable Appletalk on the WAN interface, Built-In Ethernet. As long as Robin Hood (think about that one) doesn't use that port for any local AppleTalking, he shouldn't have a problem.