[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] Portsentry and Hacked?

Subject: RE: [cobalt-users] Portsentry and Hacked?
From: flash22@xxxxxxx
Date: Fri Feb 23 15:52:08 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

On Fri, 23 Feb 2001, John Cordeiro wrote:

> >>Hi I was wondering if there is anyone out here on this list that has
> >>portsentry installed on their raq and still got hacked?
> 
> >/me puts his hand up.
> 
> Not if Portsentry was installed properly.

Hmm, not really true, i can pound on your ftp server all day long and
portsentry won't say a thing, it only watches unregistered services, it
couldn't care less about connections to normal services...

If you really want to be complete you need a log analysis tool in
addition, or you aren't going to see the guy that just sits there and
tries passwords all day long on a standard service...

proftpd - SECURITY VIOLATION: root login attempted.

gsh

References:
- RE: [cobalt-users] Portsentry and Hacked?
  - From: John Cordeiro

Prev by Date: Re: [cobalt-users] Re: Scheduled Backup Error
Next by Date: Re: [cobalt-users] Security Help
Previous by thread: RE: [cobalt-users] Portsentry and Hacked?
Next by thread: Re: [cobalt-users] HELP!! I will pay someone to help me set up DNS on a RAQ2

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index