[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] Denial-of-service attacks with QubeII??
- Subject: Re: [cobalt-users] Denial-of-service attacks with QubeII??
- From: Ould <ouldm@xxxxxxxxxxxxxxxxxxx>
- Date: Tue Nov 21 08:14:01 2000
- List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>
Sorry,
My question is how to include module in kernel of QubeII or what to do to
prevent my QubeII (firewall) from denial-of-service attacks. I use ipfwadm.
"H.P. Stroebel" wrote:
> Ould schrieb:
> > script to avoid GUI of QubeII. My problem is how to let Qube take into
> > account
> > denial-of-service attacks.
>
> i`m not sure if i understand; i assume you want to log
> denial-of-service-attacks ?
>
> this is not easy, as there are many different types of dos-attacks.
>
> some of them are difficult to log, as they concern the network instead
> of your machine itself.
> others are logged autometically, but you`ll have to learn to understand
> your logs.
>
> a good starting point would be
>
> www.psionic.com -> abacus project -> portsentry and logcheck (to report
> portscans)
> www.snort.org -> a lightweight intrusion detection system
>
> you may install an icmp logger, too.
>
> if you want to USE your qube FOR dos-attacks instead, maybe could be the
> wrong place to ask for...
>
> cu
>
> --
>
> H. P. Stroebel, Germany
>
> _______________________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To Subscribe or Unsubscribe, please go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users