[ILUG] portsentry...
Markus Rieder
markus.rieder at esre.ie
Wed Nov 22 17:48:05 GMT 2000
Kate,
This (KILL_ROUTE="/sbin/route add -host $TARGET$ reject") works fine for me.
I have it running on RH 5.2, 6.1 and 6.2.
But I have never tested the Kill_Route, because I'm not running ipfwadm.
Regards,
Markus
-----Original Message-----
From: ilug-admin at linux.ie [mailto:ilug-admin at linux.ie] On Behalf Of John P
. Looney
Sent: 22 November 2000 16:56
To: Irish LUG list
Subject: [ILUG] portsentry...
Hmm. I have a line:
KILL_RUN_CMD="/sbin/route add -host $TARGET$ reject"
in the /etc/portsentry/portsentry.conf file. The idea is, that when
someone portscan's me, I don't send anything to that host, as soon as
portsentry realises I'm being scanned.
However, there is a line:
KILL_ROUTE="/sbin/route add -host $TARGET$ reject"
which *should* do the same thing. But it doesn't. Any idea why ?
Kate
--
When I say 'free', I mean 'free': free from bond, of chain or command:
to go where you will, even to Mordor, Saruman, if you desire. "
-- Gandalf, paraphrasing the choice between Free and Non-free software
--
Irish Linux Users' Group: ilug at linux.ie
http://www.linux.ie/mailman/listinfo/ilug for (un)subscription information.
List maintainer: listmaster at linux.ie
More information about the ILUG
mailing list