From owner-freebsd-stable Thu Dec 27 19:23: 7 2001 Delivered-To: freebsd-stable@freebsd.org Received: from vortex.wa4phy.net (cc449817-a.mrtnz1.ga.home.com [24.12.79.51]) by hub.freebsd.org (Postfix) with ESMTP id 3FF9537B423 for ; Thu, 27 Dec 2001 19:22:53 -0800 (PST) Received: from vortex.wa4phy.net (localhost.wa4phy.net [127.0.0.1]) by vortex.wa4phy.net (8.11.6/8.11.6) with ESMTP id fBS3Mn185981; Thu, 27 Dec 2001 22:22:49 -0500 (EST) (envelope-from sam@wa4phy.net) Message-ID: <3C2BE589.E292F1B@vortex.wa4phy.net> Date: Thu, 27 Dec 2001 22:22:49 -0500 From: Sam Drinkard Organization: You Gotta Be Kiddin! X-Mailer: Mozilla 4.76 [en] (X11; U; FreeBSD 4.5-PRERELEASE i386) X-Accept-Language: en, ja MIME-Version: 1.0 To: Peter Ong Cc: freebsd-stable@FreeBSD.ORG Subject: Re: Trying NT Hacks References: <013a01c18f48$f156cf20$0101a8c0@haloflightleader.net> <20011228035757.A99350@harimandir> <018901c18f4c$22402480$0101a8c0@haloflightleader.net> <20011228041131.A99549@harimandir> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG One thing that works for me is the portsentry. It's pretty simple, but blocks portscans on a large number of ports, can be configured for tcp or udp., etc.. I have noticed an increase in port 111 and 119 attempts since I started posting here.. mostly random people, and I do frequent lookups. If I start getting lots of trash going to the webserver, I just use the firewall rules and block the whole shebang! Works for me... Sam To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message