[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Thanks Jay and Tim, another question... Done it myself..

Subject: Re: [cobalt-users] Thanks Jay and Tim, another question... Done it myself..
From: Jay Summers <jay@xxxxxxxxxxxxxxxxxxxxx>
Date: Fri Jun 28 14:14:35 2002
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

> 1) What is the best way to view some of my root 'access only' logs, of
> coarse after the cu command... What is the command to download them to my
> own computer?

I just view them on the server. Why bother downloading them and going
through the hassle. To see what's been going on:

tail -n 100 /path/to/logfile

To see what's going on live:

tail -f /path/to/logfile

man tail for more options.

> And 2) I'm going to install Portsentry 1.1 after the apache cobalt update,
> any suggestions on the best settings? I.e.

Depends on how many false alarms you get. Stealth will probably do you well.

> from:
> 
> inetnum:     211.94.128.0 - 211.94.159.255
> descr:       China united telecommunications corporation BEIJING branch
> descr:       Customer of CNUNINET

If you don't have any customers from that part of the world, block them.

add this to your /etc/hosts.deny

ALL: 211.94.128.0/211.94.159.255

HTH,
j
-- 
http://www.bizmanuals.com

References:
- [cobalt-users] Thanks Jay and Tim, another question... Done it myself..
  - From: Charles Teton

Prev by Date: [cobalt-users] mysql.socket
Next by Date: RE: [cobalt-users] ftpwho
Previous by thread: Re: [cobalt-users] Thanks Jay and Tim, another question... Done it myself..
Next by thread: [cobalt-users] Reload server

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index