[oclug] Security Software
Bart Trojanowski
bart at nexus.carleton.ca
Wed Jan 31 10:54:56 EST 2001
This is both an answear and a question...
I use iptables on my firewall and internal server;
I allow no services on my firewall - I passthrough to an internal server;
I run tcpwrappers (via xinetd) for further port filtering;
I run portsentry to catch and mask out scanning hosts;
Q: is portsentry sill the best to use? are there any other port
scanning/DoS detecting software packages.
B.
On Wed, 31 Jan 2001, Dan Cardamore wrote:
> Hi all,
> Since I was almost hacked into a couple days ago, and the guy is still
> trying (my packet deny's are logging it), I want to lock down my machine
> as best I can without disconnecting my network cable.
>
> When you tighten down the security on your machine, what do you do?
> - which software do you use
> - which ports do you allow
>
> Dan
>
> ________________________________________________________________
> Dan Cardamore wombat at hld.ca http://www.hld.ca
> GnuPGP Key: mailto:wombat at hld.ca?subject=sendpgpkey
> Email Stats: http://www.hld.ca/~wombat/emailStats
> Opensource projects: http://opensource.hld.ca
> My Groupware project: http://www.gwpeople.com
> ________________________________________________________________
> _______________________________________________
> oclug mailing list
> oclug at lists.oclug.on.ca
> http://www.oclug.on.ca/mailman/listinfo/oclug
>
--
WebSig: http://www.jukie.net/~bart/sig/
More information about the OCLUG
mailing list