[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] Under attack_

Subject: RE: [cobalt-users] Under attack_
From: Jonathan Nichols <jnichols@xxxxxxxxxxxxxxxxx>
Date: Mon Feb 19 23:14:16 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

On Mon, 19 Feb 2001, Brandon Wheaton wrote:

} LogCheck does this, only better.  I would recommend taking the 10
} minutes to install LogCheck to augment your PortSentry installation.

	I think you miss the point. My script is not meant to
replace logcheck. Not by any stretch of the imagination. It's sole
purpose is to insure that the server's administrator is notified
when portsentry is triggered. That's all it does. It provides a
heads up and thusly, or at least that's the way it works here,
prompts one to pay a bit more attention to the logcheck reports.

That's exactly what I'm doing with it... logcheck does its thing viacron, and the portsentry.mailbot sends me notices right as somethingI should be aware of takes place. I've been pretty happy with thesetup so far. In this day & age, I really don't feel that being *too*paranoid is a bad thing.

I've got mail filters set up for the more important things, and thoseget cc'd off to my email pager. :)

References:
- RE: [cobalt-users] Under attack_
  - From: elmer

Prev by Date: RE: [cobalt-users] Under attack_
Next by Date: Re: [cobalt-users] Hacks & chkrootkit
Previous by thread: RE: [cobalt-users] Under attack_
Next by thread: RE: [cobalt-users] Under attack_

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index