[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] PortSentry/LogCheck & Security Hardening Update 2.0.1

Subject: RE: [cobalt-users] PortSentry/LogCheck & Security Hardening Update 2.0.1
From: "t (dot) jay fowler" <tjay@xxxxxxxxxxx>
Date: Fri Aug 9 11:42:01 2002
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

 > After examing the details of the patch, it

 > > appears that this is very similar to the PortSentry/LogSentry apps.



I'm not an expert, that said:

I've noticed that portsentry works well in conjunction (after 3 daysof watching) with the SHP.

I notice that the SHP port scanning tool gets triggered where thePortsentry app does not.


Portsentry seems to be in charge, with the SHP taking second seat.

Port sentry actively blocks (I know I'm getting scanned all day everyday by my logs). The messages I have received from the SHP app haveprovided three alerts since install - all of them have been inreaction to standard name service queries (and from a machine on mylocal network -- which raised some concerns for me, but I checked andall seems well on offending machine).



--
"yup, yup, yup"

References:
- RE: [cobalt-users] PortSentry/LogCheck & Security Hardening Update 2.0.1
  - From: Frederic Badel [Abanys-Concept]

Prev by Date: RE: [cobalt-users] B**tards!
Next by Date: Re: [cobalt-users] B**tards!
Previous by thread: RE: [cobalt-users] PortSentry/LogCheck & Security Hardening Update 2.0.1
Next by thread: Re: [cobalt-users] Disk Space Message

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index