[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: firewall program
- To: linux-il(at-nospam)linux.org.il
- Subject: Re: firewall program
- From: Yotam Rubin <yotam(at-nospam)makif.omer.k12.il>
- Date: Sun, 27 May 2001 20:24:43 +0300
- Delivered-To: linux.org.il-linux-il@linux.org.il
- In-Reply-To: <5.0.2.1.0.20010527174450.00a74d00@netvision.net.il>; from eranle@netvision.net.il on Sun, May 27, 2001 at 06:37:29PM +0200
- Mail-Followup-To: linux-il@linux.org.il
- References: <5.0.2.1.0.20010527174450.00a74d00@netvision.net.il>
- Sender: linux-il-bounce(at-nospam)cs.huji.ac.il
- User-Agent: Mutt/1.3.15i
Hello,
Port attack? What exactly are you referring to, portscans?
Portsentry can deny on the fly hosts which portscan you. I am generally
inclined not to use portsentry, as port scans can easily be spoofed and
thus making a DoS attack against your host very very feasible.
Additional arguments follow:
* Snort has a port scan detection plugin, which suffices my needs.
* I normally do not care when people port scan me. The majority of break-in
attempts do not employ a full portscan prior to launching the attack but
rather focus on a single service.
Regards, Yotam Rubin
On Sun, May 27, 2001 at 06:37:29PM +0200, Eran Levy wrote:
> Hi,
> Is there any program that detects port attack and then running IPchains
> command to DENY/REJECT? I need a simple program.
>
>
> ----
> Regards,
> Eran Levy.
> E-mail: eranle@netvision.net.il
> WebSite: http://come.to/liloboot
>
>
> =================================================================
> To unsubscribe, send mail to linux-il-request@linux.org.il with
> the word "unsubscribe" in the message body, e.g., run the command
> echo unsubscribe | mail linux-il-request@linux.org.il
>
=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il