From owner-freebsd-questions@FreeBSD.ORG Fri Oct 15 02:09:50 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 724E316A4CE for ; Fri, 15 Oct 2004 02:09:50 +0000 (GMT) Received: from mail.cableone.net (scanmail1.cableone.net [24.116.0.121]) by mx1.FreeBSD.org (Postfix) with ESMTP id B50E643D5E for ; Fri, 15 Oct 2004 02:09:49 +0000 (GMT) (envelope-from v.velox@vvelox.net) Received: from vixen42.24-119-122-191.cpe.cableone.net (unverified [24.119.122.25]) by smail1.cableone.net (SurgeMail 1.9b) with ESMTP id 304520 for multiple; Thu, 14 Oct 2004 19:09:23 -0700 Date: Thu, 14 Oct 2004 21:09:06 -0500 From: Vulpes Velox To: Peter Pauly Message-ID: <20041014210906.761aa524@vixen42.24-119-122-191.cpe.cableone.net> In-Reply-To: References: <200410131404.i9DE4ONU047345@bmcgover-pc.cisco.com> <4ACDF26414DB010421A6AD6C@utd49554.utdallas.edu> X-Mailer: Sylpheed-Claws 0.9.12b (GTK+ 1.2.10; i386-portbld-freebsd4.10) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Server: High Performance Mail Server - http://surgemail.com cc: Paul Schmehl cc: questions@freebsd.org cc: "Brian J. McGovern" Subject: Re: Automatic Firewall software? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 15 Oct 2004 02:09:50 -0000 On Thu, 14 Oct 2004 14:07:24 -0500 Peter Pauly wrote: > Doesn't Portsentry ignore ports that have a service bound to them > like the SSH daemon? In that case, it wouldn't help Brian's problem, > since ssh is running, portsentry would ignore any attacks to port > 22, right? Move it and the like to a non-common port if one can. :)