[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] consistently pounded

Subject: Re: [cobalt-security] consistently pounded
From: Brent Sims <brent@xxxxxxxxxxx>
Date: Tue, 23 May 2000 21:27:56 -0600 (MDT)

On Tue, 23 May 2000, Theodore Jones so wrote:

} So why isn't there a siimple way to have a script watch the error log report
} and just add certain IP numbers to the hosts.deny file...?

	I have not actually looked at the configuration file but tcp
wrappers does not watch the httpd port by default.

} > I would strongly discourage tcp wrappers on the http port. You will get a
} > huge performance hit.  one of the ways that a web server an be so fast is
} > because it has several daemons running and waiting for connections.

	While the performance hit is indeed correct, the attack, as
I understand things, exists in real time. Thus the choice is to sit
back and watch hoping for the best, or to take some form of
proactive action. 

	Peace be with you,
	
	Brent
	
	Brent Sims
	WebOkay Internet Services
	http://www.WebOkay.net
	Brent@xxxxxxxxxxx
	(719) 595-1427 (Voice/Fax)

Follow-Ups:
- Re: [cobalt-security] consistently pounded
  - From: Adam Crews

References:
- Re: [cobalt-security] consistently pounded
  - From: Theodore Jones

Prev by Date: Re: [cobalt-security] consistently pounded
Next by Date: Re: [cobalt-security] consistently pounded
Previous by thread: Re: [cobalt-security] consistently pounded
Next by thread: Re: [cobalt-security] consistently pounded

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index