From owner-freebsd-questions Tue Nov 14 18:49:35 2000 Delivered-To: freebsd-questions@freebsd.org Received: from femail8.sdc1.sfba.home.com (femail8.sdc1.sfba.home.com [24.0.95.88]) by hub.freebsd.org (Postfix) with ESMTP id 2303A37B479 for ; Tue, 14 Nov 2000 18:49:32 -0800 (PST) Received: from home.com ([24.12.186.185]) by femail8.sdc1.sfba.home.com (InterMail vM.4.01.03.00 201-229-121) with ESMTP id <20001115024931.EDUL2160.femail8.sdc1.sfba.home.com@home.com>; Tue, 14 Nov 2000 18:49:31 -0800 Message-ID: <3A11F9FD.284EBA37@home.com> Date: Tue, 14 Nov 2000 18:50:37 -0800 From: Rob X-Mailer: Mozilla 4.75 [en] (X11; U; FreeBSD 4.1.1-RELEASE i386) X-Accept-Language: en MIME-Version: 1.0 To: daniel.cuthbert@uk.psi.com Cc: Nader Turki , FreeBSD-questions@FreeBSD.ORG Subject: Re: attack/portscan References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I would also recommend buying the book "Building Linux and OpenBSD Firewalls" by Wes Sonnenreich and Tom Yates, Wiley 2000. Most of the info on OpenBSD is applicable to FreeBSD. It is excellent. FreeBSD has kernel support (see LINT) for IPFilter, which the book explains in depth. There is also a wealth of info in it on the various types of security exploits. Rob. Dan Cuthbert wrote: > > Hi Nader > > there is a decent utility on your ports called Portsentry > /usr/ports/security/portsentry > > have a look at this link for the howto's > > http://www.freebsddiary.org/portsentry.html > > Dan Cuthbert > European Hosting Research & Engineering > PSINet Datacentres > mobile : +44 77 1279 0646 > > -----Original Message----- > From: owner-freebsd-questions@FreeBSD.ORG > [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Nader Turki > Sent: 14 November 2000 13:59 > To: FreeBSD-questions@FreeBSD.ORG > Subject: attack/portscan > > Hi there, > I'm a FreeBSD newbie. I was wondering if someone could help me or give > me a URL to a site that teaches how to config my server to log all > attacks and portscaning. I've seen that on many boxes, when they are > under an attack it shows which IP is under an attack. I hope you guys > know what i mean. > Thanks, > > --Nader > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message