From owner-freebsd-questions Sun Sep 24 15:19:35 2000 Delivered-To: freebsd-questions@freebsd.org Received: from mailhub.unibe.ch (mailhub.unibe.ch [130.92.254.109]) by hub.freebsd.org (Postfix) with ESMTP id 1044A37B42C for ; Sun, 24 Sep 2000 15:19:29 -0700 (PDT) Received: from CONVERSION-DAEMON by mailhub.unibe.ch (PMDF V5.2-32 #42480) id <0G1E00201WINUY@mailhub.unibe.ch> for questions@FreeBSD.ORG; Mon, 25 Sep 2000 00:16:00 +0200 (MET DST) Received: from iamexwi.unibe.ch (haegar.unibe.ch [130.92.71.10]) by mailhub.unibe.ch (PMDF V5.2-32 #42480) with ESMTP id <0G1E001DRWIN02@mailhub.unibe.ch>; Mon, 25 Sep 2000 00:15:59 +0200 (MET DST) Received: from arp.unibe.ch (arp [130.92.62.25]) by iamexwi.unibe.ch (8.8.8+Sun/8.8.8) with ESMTP id AAA24432; Mon, 25 Sep 2000 00:22:45 +0200 (MET DST) Received: from localhost (roth@localhost) by arp.unibe.ch (8.9.1b+Sun/8.9.1) with ESMTP id AAA07854; Mon, 25 Sep 2000 00:22:42 +0200 (MET DST) Date: Mon, 25 Sep 2000 00:22:41 +0200 (MET DST) From: Tobias Roth Subject: Re: Scanning for port scans, etc In-reply-to: <200009242145.QAA53342@mailbox.mcs.net> X-Sender: roth@arp To: Tommy Forrest - KE4PYM Cc: "questions@FreeBSD.ORG" Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Content-transfer-encoding: 7BIT X-Authentication-warning: arp.unibe.ch: roth owned process doing -bs Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > I am interested in watching my FBSD 4.0 box for people running port > scans and other fun things (tm) against it. What applications can I > look at to get started? Which are the best? check out iplog from the ports, it detects virtually any form of scan nmap et all is capable off. if you want to react on the scans in some way, check out portsentry, also in the ports. and while you're at it, go and install logcheck, so you quickly notice any uncommon log entry have fun, Tobe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message