Hi Timo, On Wed, 26 Apr 2000, Timo Schulz wrote:
Hi list, I have a few questions about the detection of port scanning. In the IX 5/May 2000 magazin (German), the author writes that he uses nmap to scan a well used web site.
First I want to know if the victim can easily detect the scan and how to prevent such scans.
Does SuSE 6.x contain any tools to do that ?
Sure, scanlogd. I use another tool which is not part of SuSE6.x: the iplogger from debian, which gives more information about connection attempts and portscans. Get it on every debian mirror, it is called iplogger.deb. It works fine with SuSE6.x ... jops, Christoph
PS: I ask me, if it is legal to do portscans on any sites ?
-- Two-a-Day at joesixpack.net www.freenet.de/joesixpack keyid BF3DF9B4
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com