[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] [RaQ3] Port Sentry

Subject: Re: [cobalt-security] [RaQ3] Port Sentry
From: Brad Hubbard <brad@xxxxxxxxxxxxxxxx>
Date: Mon, 11 Jun 2001 18:08:12 +1000
Organization: Congo Systems
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

On Fri,  8 Jun 2001 23:11, Kevin D wrote:

> Now this I like. I've actually considered setting up something like this
> myself... care to share that config and script?

I too would be interested in taking a look at this although, I imagine it 
only really involves a cron.daily script that does an "/sbin/ipchains -F" and 
then deletes all but the top 6 lines from /etc/hosts.deny.

Sounds like a good move though.

Do you run multiple instances of portsentry i.e. 

1: portsentry -stcp
2: portsentry -sudp

or is this question naive? I don't have much experience with portsentry but 
intend to learn ;-)

Cheers,
Brad

Cheers,
Brad

References:
- [cobalt-security] [RaQ3] Port Sentry
  - From: Sean Chester
- Re: [cobalt-security] [RaQ3] Port Sentry
  - From: Michael Stauber
- Re: [cobalt-security] [RaQ3] Port Sentry
  - From: Kevin D

Prev by Date: Re: [cobalt-security] Reports stoped on 15 may 2001
Next by Date: Re: [cobalt-security] Reports stoped on 15 may 2001
Previous by thread: Re: [cobalt-security] [RaQ3] Port Sentry
Next by thread: Re: [cobalt-security] [RaQ3] Port Sentry

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index