i use psionic portsentry, highly configurable, will alert and log as well as block. Site is at www.psionic.com. They also have lots of other neat sec. tools like log analysers and the like. Regards, Iain
-----Original Message----- From: Joerg Henner [mailto:jhe@lihas.de] Sent: 18 February 2001 14:12 To: 'suse-security@suse.com' Subject: Re: [suse-security] Anti-Portscan tool
On Son, 18 Feb 2001, Thomas Lamy wrote:
I think of installing a tool, which automatically blocks port scanners at the gateway for a specific time (perhaps one day).
Does such a beast exist (at best as SuSE-rpm) ? And would it be really wise to do that? Any pitfalls?
Good configured firewalls should be enough for that:
Kernel 2.2: ipchains/sinus-firewall 2.4: iptables
Greetings,
Joerg Henner.
-- LinuxHaus Stuttgart | Tel.: +49 (7 11) 2 85 19 05 J. Henner & A. Reyer, Datentechnik GbR | D2: +49 (1 72) 7 35 31 09 | Fax: +49 (7 11) 5 78 06 92 Linux, Netzwerke, Consulting & Support | http://lihas.de
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com