MLUG: Mizzou Linux Users GroupHome | FAQ | Server | Presentations | Mailing Lists/Archives | Member Tools | Links | Sponsors | Contact
MLUG: RE: [MLUG - DISCUSSION] network scanning?
RE: [MLUG - DISCUSSION] network scanning?
Email address obfuscation in effect -- please click here to turn it off.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 
The only problem with portsentry (and things like it) is that if someone
spoofs a scan from your default gateway and/or your name server, you're
screwed.

--J

> -----Original Message-----
> From: Neil Bradshaw [mailto:EMAIL:PROTECTED]
> Sent: Monday, April 02, 2001 1:50 PM
> To: EMAIL:PROTECTED
> Subject: RE: [MLUG - DISCUSSION] network scanning?
> 
> 
> If you're terribly worried about scans, just install 
> Portsentry. They'll
> get one scan, then be added to /etc/hosts.deny. That will 
> keep computer
> crackers away.
> 
> As far as I'm concerned, the more unauthorized scans a 
> machine receives
> without a breach of security, the more secure it is. I like 
> to know that
> several have tried, but no one has suceeded. It's not an egotistical
> thing, but something to measure the amount of security tests it has
> passed.
> 
> If your security is so bad that you have to press charges for 
> unauthorized
> scans instead of making your systems so secure that scans 
> won't show wide
> open holes, then your priorities are all wrong. Use a secure 
> OS (Linux,
> OpenBSD, etc.) and keep it secure.
> 
> Regards,
> Neil
> 
> --
> To manage your subscription, go to 
http://mlug.missouri.edu/members/edit.php

Archives are available at http://mlug.missouri.edu/list-archives/
--
To manage your subscription, go to http://mlug.missouri.edu/members/edit.php

Archives are available at http://mlug.missouri.edu/list-archives/
Questions? Comments? Feel free to contact MLUG.
DMCA and other copyright information.