Danny Carter wrote:
>
> David,
> Can these scripts be made to work on
> Charles' Eigerstein images or is
> it just for use with the Oxygen distro?
> This sounds like something that I'd
> like to set up on my firewall ES2B,
> especially with all of the activity
> that I have seen in the logs lately.
It should be fine; I've not run them on EigerStein, but they are quite
simple scripts, really. What makes them nice is the tying of other
programs together. To be truly useful, the alert script requires some
or most of the programs listed: jwhois, dig, ping, traceroute,
tcptraceroute, nmap. However, if the program is missing it won't use
it. All of those programs (except ping) are available as packages in
the same location. All of them should yet work under glibc 2.0 (and
Eigerstein).
> On Wed, 19 September 2001, David Douthitt wrote:
> > I've packaged a couple of scripts that tie into PortSentry which page me
> > (and send email) every time one tries to connect to a port protected by
> > PortSentry.
> >
> > One sends out a page based on the command line by using an email gateway
> > (you'll have to figure out your own).
> >
> > The other does the work; it sends out the page, as well as formulating a
> > big email with all the details possible about the source IP.
_______________________________________________
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
