Date: Tue, 30 Jan 2001 01:26:46 -0800 (PST) From: Thomas Cannon <root@noops.org> To: Kris Kennaway <kris@obsecurity.org> Cc: FBSDSecure@aol.com, freebsd-security@FreeBSD.ORG Subject: Re: (no subject) Message-ID: <Pine.BSF.4.21.0101300121260.39078-100000@sonar.noops.org> In-Reply-To: <20010130011533.A43910@xor.obsecurity.org>
next in thread | previous in thread | raw e-mail | index | archive | help
> > critical IPs are placed in the ignore file. The DNS and email > > servers I did not consider, but they will be added. Thanks for the > > tip. > > "It's too difficult", etc. Firewall policy has a simple rule: Deny all not allowed When setting up something that will auto-ban hosts or networks, you need the opposite of the firewall rule -- namely, to allow tings you don't want banned. Surely you can see where I'm going. It's an obvious conclusion, I'd think. It might be okay for a desktop machine, but nothing more advanced.... Lest I sound like I'm picking on some vendor/writer of code... logcheck rocks. -tcannon To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0101300121260.39078-100000>