On Wed, Jun 14, 2000 at 02:43:07PM +0200, Wichert Akkerman wrote:
> A good free reimplementation of portsentry is something I would really
> like to see. Right now portsentry works reasonably, but it could really
> use a bunch of extra features.
Can't snort do almost everything portsentry does if
On Thu, Jun 15, 2000 at 11:00:12AM -0500 , [EMAIL PROTECTED] wrote:
> Hello,
> I found on my machine the following message one morning:
>
> PAM_UNIX[763]: (su) session opened for user www-data by (uid=0)
> su [821]: + ??? root-nobody
>
> PAM_UNIX[821]: (su) session opened for user nobody by (uid=
On Wed, Jun 14, 2000 at 02:43:07PM +0200, Wichert Akkerman wrote:
> A good free reimplementation of portsentry is something I would really
> like to see. Right now portsentry works reasonably, but it could really
> use a bunch of extra features.
Can't snort do almost everything portsentry does if
On Thu, Jun 15, 2000 at 11:00:12AM -0500 , [EMAIL PROTECTED] wrote:
> Hello,
> I found on my machine the following message one morning:
>
> PAM_UNIX[763]: (su) session opened for user www-data by (uid=0)
> su [821]: + ??? root-nobody
>
> PAM_UNIX[821]: (su) session opened for user nobody by (uid
> PAM_UNIX[763]: (su) session opened for user www-data by (uid=0)
> su [821]: + ??? root-nobody
>
> PAM_UNIX[821]: (su) session opened for user nobody by (uid=0)
> anymore (I do assume that it is an intrusion attack,
> unless there is a much simpler explanation for this).
No intrusion. It's ju
Hello,
I found on my machine the following message one morning:
PAM_UNIX[763]: (su) session opened for user www-data by (uid=0)
su [821]: + ??? root-nobody
PAM_UNIX[821]: (su) session opened for user nobody by (uid=0)
This is the first time it happened and since then I upgraded
to the latest un
> PAM_UNIX[763]: (su) session opened for user www-data by (uid=0)
> su [821]: + ??? root-nobody
>
> PAM_UNIX[821]: (su) session opened for user nobody by (uid=0)
> anymore (I do assume that it is an intrusion attack,
> unless there is a much simpler explanation for this).
No intrusion. It's j
Hello,
I found on my machine the following message one morning:
PAM_UNIX[763]: (su) session opened for user www-data by (uid=0)
su [821]: + ??? root-nobody
PAM_UNIX[821]: (su) session opened for user nobody by (uid=0)
This is the first time it happened and since then I upgraded
to the latest u
Previously Guido Guenther wrote:
> According to upstream we can't hope that he will put portsentry under a
> license which debian considers as free in the near future so a free
> reimplementation would be great. Portsentry is a nice peace of software
> but it's missing some crucial features such as
Previously Alexander Hvostov wrote:
> Where might I find this?
http://www.msu.ru/pniam/pniam.html
ftp://ftp.nc.orc.ru/pub/Linux/pniam/pniam-0.02.tgz
Wichert.
--
/ Generally uninteresting signature - ignore at
Previously Guido Guenther wrote:
> According to upstream we can't hope that he will put portsentry under a
> license which debian considers as free in the near future so a free
> reimplementation would be great. Portsentry is a nice peace of software
> but it's missing some crucial features such a
Previously Alexander Hvostov wrote:
> Where might I find this?
http://www.msu.ru/pniam/pniam.html
ftp://ftp.nc.orc.ru/pub/Linux/pniam/pniam-0.02.tgz
Wichert.
--
/ Generally uninteresting signature - ignore at
12 matches
Mail list logo
