[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-users] hosts.deny port scanners

Subject: [cobalt-users] hosts.deny port scanners
From: Kris Dahl <kris@xxxxxxxxxxxxx>
Date: Tue Feb 29 13:48:03 2000

It looks like the Qube automatically adds hosts that port scan it into the
hosts.deny.  Pretty cool.

'Cept I was doing some security monitoring on the thing and couldn't figure
out why I was not able to ssh into the box the next day from my workstation
and my workstation only--and didn't put two and two together til yesterday.
Had a couple of other hostname/ips in the deny list (like @home's resident
portscanner and a couple script kiddies).

Was wondering, anyone know what software cobalt is using to 'detect' the
port scans?

Thanks,
-k

Prev by Date: [cobalt-users] DNS,MX and 3 domains
Next by Date: [cobalt-users] Changing IP Addresses of a RaQ2
Previous by thread: RE: [cobalt-users] Recall: MX records and mail
Next by thread: [cobalt-users] Changing IP Addresses of a RaQ2

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index