hi all, this was posed to me from an associate: this guy was asking about two programs- one called 'blackice' and another called 'shieldsup'. there was mention that the blackice firewall/proxy/whatever can send back some kind of ip payload upon intrusion. looks like nasty retribution to me. anyway, can there be a unix script, using something like perl, attach and query a port request/denial upon intrusion. this script would constantly parse etc/services and note which are real services as opposed to fake/requested ones then send/attache some kind of authentication cookie riding on the tailend of the intrusive packet to query the host and possibly notify it's mail admin. this script can be a reactive action from ipchains or from something like portsentry. i know that there can be no coding uploads but if you would like to email me your script for my associate's testing server. that would be appreciated thanks all! _______________________________________________________ Get 100% FREE Internet Access powered by Excite Visit http://freeworld.excite.com - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
