For those of you who are using my alert.sh script for intrusion detection, there is a new version out, 1.4.3. The only difference is I have eliminated the TrackDown() feature. This is the function that would determine the email of the admin responsible for the remote system and email them a scan warning. I have removed this function because it no longer works. The whois database has radically changed, making automated lookups far more involved, and beyond the scope of my script. For those of you using version 1.4.2 or older, no need to upgrade. However, the "Email Remote System" known as the TrackDown() function will no longer work, so you might as well disable it if you are using it. # EMAIL REMOTE SYSTEM # Define as "true" if you want to automatically email # the remote admin when you reach your scan limit. email=false Thanks to Chris Whiting <[EMAIL PROTECTED]> for pointing this out. Lance Spitzner http://www.enteract.com/~lspitz/papers.html ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
