Date: Mon, 01 Jan 2001 18:36:17 -0500 From: Daniel Hagan <dhagan@colltech.com> To: Kris Kennaway <kris@FreeBSD.ORG> Cc: Mikhail Kruk <meshko@cs.brandeis.edu>, "freebsd-security@freebsd.org" <freebsd-security@FreeBSD.ORG> Subject: Re: Large scan activity Message-ID: <3A511471.5DE87129@colltech.com> References: <20001230091022.A29983@citusc.usc.edu> <Pine.LNX.4.30.0012301241150.20262-100000@daedalus.cs.brandeis.edu> <20001230200855.B936@citusc.usc.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
Also, see http://www.sans.org/giac.html for the GIAC (Global Incident Analysis Center?). They do semi-realtime tracking of port-scan activity based on volunteer reports of activity. They can also help get "interesting" logs analyzed. Daniel Kris Kennaway wrote: > > On Sat, Dec 30, 2000 at 12:44:41PM -0500, Mikhail Kruk wrote: > > BTW, I wanted to ask for some time now, is it a good idea to report the > > scans when I see them or it's a waste of time? > > Port scan reports are probably off-topic for this list. However you > might be interested in the 'incidents' mailing list hosted by > securityfocus.com which is for discussion of security incidents such > as probing and break-ins. > > Kris > > ------------------------------------------------------------------------ > Part 1.2Type: application/pgp-signature To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3A511471.5DE87129>