-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 2 Jun 2001, John Hasler wrote: > > > It is trivial to spoof the source address of a portscan, allowing one to > > cause your machine to block access from your nameservers or your clients > > or other important sites. > > While certainly no panacea, portsentry isn't that stupid. The authors > thought about this and provided for it. >
agreed. portsentry isn't perfect (what is?). but the authors have taken great pains to allow for certain types of breaks. i've been using it for a while now. combined with logcheck and hostsentry, it's a pretty good system. at a minimum, at least i know what's happening on my system. - -- ____) ,_) ,_) (-(__ |_ _ _ |/ ____) | |(_)(_ |\ ( \_, _______________________________________________ | mailto : [EMAIL PROTECTED] | | linux : http://exitwound.org | | mozart : http://mozart.sourceforge.net | | buck : http://www.BuckOwensFan.com | _______________________________________________ | The day advanced as if to light some work of | | mine; it was morning, and lo! now it is | | evening, and nothing memorable is | | accomplished. -- H.D. Thoreau | _______________________________________________ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE7GUgtr9c0KwefYXMRAs+xAJ48VIYSCmgZk9brdsTA8B0kzi/sBQCeMh9G 0loZrUBVPJqZEtCB5Vwi+20= =9oGB -----END PGP SIGNATURE-----
