[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] PortSentry works !

Subject: Re: [cobalt-users] PortSentry works !
From: inc@xxxxxxxxxxxxx
Date: Thu Mar 15 15:47:02 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

> > Would anyone be interested in a database of attempted port pokes that we
> > could add to, or would that be kinda useless?
>
> Not two weeks ago did I have this idea, seriously. Then I thought I'd
> hang a giant "Hack Me" sign around my neck. Actually, if someone main-
> tained this discreetly for trusted users and published the list some-
> place else, well that could be workable.



check http://www.dshield.org


but realise "DShield currently employs as little filtering of incoming
reports as possible."

i've run portsentry for about a month now, and none of the blocked hosts
have returned.  i'd be interested to hear if others have had the same
experience over longer terms.

as well as that, apparently all these common sources of portscanners, like
korea, china, etc, are convenient "launchpads".  trojaned systems in
countries that are unlikely to hand over isp or telephony logs to foreign
law-enforcement are highly prized for making hack attempts.

this would suggest that your portscanners are probably in iraq, or
palestine, or the house next door.

References:
- RE: [cobalt-users] PortSentry works !
  - From: Clark E. Morgan

Prev by Date: Re: SV: [cobalt-users] PortSentry works !
Next by Date: [cobalt-users] RaQ4 asp
Previous by thread: RE: [OT]: Bad Voodoo (Was: Re: [cobalt-users] PortSentry works !)
Next by thread: RE: [cobalt-users] PortSentry works !

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index