[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-security] eggdrop and monitoring

Subject: RE: [cobalt-security] eggdrop and monitoring
From: "Jamie - Serverstream" <jamie@xxxxxxxxx>
Date: Wed, 16 Apr 2003 23:40:47 +0100
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

You cant block the port, as eggdrops are not port specific, you specify it
in the Eggdrop Config.

You can run a cron script to killall eggdrop every minute, but they could
simply rename the binary.

You could firewall off all the unpriv ports that could attempt to use, but
this might lead to port issues for such deamons needing unspecified unpriv
ports.

You could inform the users that its against AUP, and crack down on
offenders, removing SSH rights etc..

End of the day, if they want it running, its going to run,  so make a policy
decision, and stick to it. 


-----Original Message-----
From: cobalt-security-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-security-admin@xxxxxxxxxxxxxxx] On Behalf Of Tik & Klik
Internetdiensten
Sent: 16 April 2003 20:57
To: cobalt-security@xxxxxxxxxxxxxxx

Hello, some users are running eggdrops, just found this out.
is there a way to block this port, or to monitor the traffic this generates,
so i can charge the use of this

_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security

References:
- [cobalt-security] eggdrop and monitoring
  - From: Tik & Klik Internetdiensten

Prev by Date: Re: [cobalt-security] Ipchains and dns
Next by Date: Re: [cobalt-security] eggdrop and monitoring
Previous by thread: [cobalt-security] eggdrop and monitoring
Next by thread: Re: [cobalt-security] eggdrop and monitoring

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index