On Mon, Sep 29, 2003 at 08:10:22AM -0800, Noah wrote:
>
> FreeBSD 4.8 - stable
>
>
> can somebody tell me how to get portsentry to flush the hosts.deny file? or
> do I just need to remove the contents manually and restart portsentry?
You don't need to do that for two reasons:
i) tcp_wrappers
On Wed, 2003-02-12 at 05:55, Stephen Hilton wrote:
> What bothers me about this method of defense is the possibilty
> of an attacker causing a DOS by spoofing their source scan IP
> and causing your system to deny traffic from a vaild host like
> your upstream DNS server.
You can add your DNS
hi
thanks again.
i think i'm going to move portsentry to hosts behind the gateway - makes more sense
considering the info you sent, and then look into snort/tripwire on the gateway (i
actually have tripwire installed, i just haven't generated a new config db lately,
since i've been messing aro
On Tue, 11 Feb 2003 23:05:09 -0600
Redmond Militante <[EMAIL PROTECTED]> wrote:
> hi
> i've used portsentry on standalone workstations before with ipfilter setup as a
> +firewall, and for some reason, now when i'm trying to use it on a ipf/ipnat
> +gateway box, it's being really verbose about the
> hi
> i've used portsentry on standalone workstations before with ipfilter
> setup as a +firewall, and for some reason, now when i'm trying to use it
> on a ipf/ipnat +gateway box, it's being really verbose about the ports
> it's binding to. if i +nmap a standalone workstation i have configured
hi
i've used portsentry on standalone workstations before with ipfilter setup as a
+firewall, and for some reason, now when i'm trying to use it on a ipf/ipnat
+gateway box, it's being really verbose about the ports it's binding to. if i
+nmap a standalone workstation i have configured ipfilter/po
> hi all
>
> i have an ipf/ipnat gateway machine protecting an internal network of -
> so far one, hopefully 2 or more - computers. the first thing i did
> after i observed that i have my setup successfully nat'ing, was to try
> to portscan myself from an outside machine, using nmap. at first i
>
Wednesday, January 29, 2003, 2:03:03 PM, you wrote:
PS> Quick question...
PS> What's the best way to start portsentry on reboot?
PS> Many thanks,
PS> phillip.
I use a script in /usr/local/etc/rc.d
--
Benmailto:[EMAIL PROTECTED]
To Unsubscribe: send mail to [EM
Hi Phillip.
On Wed, Jan 29, 2003 at 02:03:03PM -0500, Phillip Smith wrote:
>
> What's the best way to start portsentry on reboot?
There doesn't seem to be one build by the port, so I wrote a
/usr/local/etc/rc.d/portsentry.sh that looks someting like this:
#!/bin/sh
case "$1" in
start)
[
Hi,
On Wed, 2003-01-29 at 19:03, Phillip Smith wrote:
> Quick question...
>
> What's the best way to start portsentry on reboot?
>
> Many thanks,
>
You can write a simple start-up script that does that for you. Here's
what I have in /usr/local/etc/rc.d:
#!/bin/sh
PORTSENTRY="/usr/local/bin/p
10 matches
Mail list logo