Date: Fri, 27 Jun 1997 18:05:37 +0200 (SAT) From: Tony Harverson <tony@asterix.insight.co.za> To: sweeting@tm.net.my (chas) Cc: freebsd-security@freebsd.org Subject: Re: how can we monitor in real time ? (was Re: probing from Message-ID: <E0whdWj-0003xj-00@asterix.insight.co.za> In-Reply-To: <3.0.32.19970627224059.009cece0@mail.tm.net.my> from "chas" at Jun 27, 97 10:50:16 pm
next in thread | previous in thread | raw e-mail | index | archive | help
> I sent along a bit of info on this one earlier but it > did prompt me to wonder : > > "how can we check for this info (and DoS attackes or > similar) in real time rather than afterwards in log files ? > is there any software that can be configured to monitor > your server and shout when it is possibly coming under > attack ?" > > Thank you very much, > > chas > There is a piece of software called "logsurfer" which can be configured to watch log files and take any action that can be entered at the command line eg : tcp denys to someone of my machines get paged to me.. haven't get a url for it at the moment - give me a yell if you get stuck. Tony
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?E0whdWj-0003xj-00>