G'day,
- Original Message -
From: "Mark Bucciarelli" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Saturday, August 07, 2004 12:17 AM
Subject: Restoring /etc
> I screwed up my /etc directory bigtime. I wanted to put it under CVS to
> maintain a history, but didn't realize that CVS
Is there a debian package wherein the app recognizes
IIS worm attacks? Then blocks these IPs in real time?
Would also be nice if it'll unblock those IPs after a
certain amount of time.
Thanks!
Shannon
__
Do you Yahoo!?
Yahoo! Mail Address AutoC
This is an automatic message to let you know your request of support has been received
by our helpdesk and you have been assigned a ticket ID - 138772.
Once you have received this confirmation email, you do not need to call again, our
clock is ticking and we will respond as soon as possible. Th
Hi
I'm not an ISP but I keep getting this kind of activity on my modem:
+--+
omni:~# tcpdump -i ppp0 | grep unreachable
tcpdump: listening on ppp0
07:48:29.447038 211.26.118.133 > 211.26.122.178: icmp: 211.26.118.133
tcp port 135 unreachable [tos 0xc0]
07:48:29.459207 211.2
We seem to be, being hit with in excess of 12,000 spam emails per day from adsl and cable modems in the US alone. Then we get brute force attackedthe server at times gets somewhat stretched...
What would ppl suggest it the most efficient way to block such addresses?
I cannot simply block
The only problem with tripwire is that u have to set up the snapshot file on
write protected media to have true security. If somebody hacks ur box they
can just reupdate tripwire themselves and u'll be none the wiser. This can
be an administrative hassle to update the snapshot and move it to some
> I also want to use something like tripwire to set up file intregity.
apt-cache search tripwire
apt-cache show aide
On Fri, 6 Aug 2004, Tinus Nijmeijers wrote:
> I'm looking at securing a new server.
>
> i'll be using iptables to restrict acces and i want to install SNORT to
>
On Sat, 7 Aug 2004 00:17, Mark Bucciarelli <[EMAIL PROTECTED]> wrote:
> Is there some clever way I can recreate the /etc dir? (A dpkg-reconfigure
> trick?) Or can I just copy the symbolic links from the working box over
> to the non-working box?
How about the following:
tar cf /tmp/foo.tar `fin
I screwed up my /etc directory bigtime. I wanted to put it under CVS to
maintain a history, but didn't realize that CVS does not honor symbolic
links. Of course, I didn't backup before rm -rf /etc; cvs co etc. Doh!
I have another Debian stable box and I tried recreating the rc.? and
alternat
I'm looking at securing a new server.
i'll be using iptables to restrict acces and i want to install SNORT to
watch the network.
I also want to use something like tripwire to set up file intregity.
however: tripwire seems OLD, last version (2.3.1) is from march 3, 2001
i've also seen AIDE ment
10 matches
Mail list logo
