[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] [RaQ3] Port Sentry
- Subject: Re: [cobalt-security] [RaQ3] Port Sentry
- From: Brad Hubbard <brad@xxxxxxxxxxxxxxxx>
- Date: Mon, 11 Jun 2001 18:08:12 +1000
- Organization: Congo Systems
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
On Fri, 8 Jun 2001 23:11, Kevin D wrote:
> Now this I like. I've actually considered setting up something like this
> myself... care to share that config and script?
I too would be interested in taking a look at this although, I imagine it
only really involves a cron.daily script that does an "/sbin/ipchains -F" and
then deletes all but the top 6 lines from /etc/hosts.deny.
Sounds like a good move though.
Do you run multiple instances of portsentry i.e.
1: portsentry -stcp
2: portsentry -sudp
or is this question naive? I don't have much experience with portsentry but
intend to learn ;-)
Cheers,
Brad
Cheers,
Brad