Eric Spakman wrote: > Hi Jim, > > Does anything show up in the /var/lib/portsentry/ directory? > > Eric > > >> I've installed Portsentry on my floppy setup, thinking it would give me >> extra security. It appears to be working, but I have 2 questions: >> >> >> 1) Does it do anything that Shorewall doesn't (they both use iptables)? >> 2) I say it appears to be working, but I don't see anything logged, >> other than entries in /var/log/daemon.log that it's going into listen mode >> on the configured ports. I've tried a port scan by GRC's 'ShieldsUp', but >> I don't see any alerts >> triggered in any logs. >> Only 2 empty files - portsentry.blocked.tcp and portsentry.blocked.udp. I've got both BLOCK_UDP and BLOCK_TCP set to zero , because I only want warnings to start with, and I've set KILL_ROUTE="/sbin/iptables -I INPUT -s $TARGET$ -j DROP" . I was hoping that if I got GRC's 'ShieldsUp' to scan my machine on the internal interface, that I would get a log file somewhere with warning entries.
Thanks for the reply, Eric. Jim ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 ------------------------------------------------------------------------ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/