|
Does anyone know of a way for better snort/logcheck
out putting?
I get stuff from ipop3d about regular (completely
normal) pop3 logins by myself. I'd rather not get these all
together.
Also I'm getting the following:
Apr 21 22:30:59 hwnet pptpd[2226]: CTRL: Client 24.186.89.xx control
connection started
Apr 21 22:30:59 hwnet pptpd[2226]: CTRL: EOF or bad error reading ctrl packet length. Apr 21 22:30:59 hwnet pptpd[2226]: CTRL: couldn't read packet header (exit) Apr 21 22:30:59 hwnet pptpd[2226]: CTRL: CTRL read failed Apr 21 22:30:59 hwnet pptpd[2226]: CTRL: Client 24.186.89.xx control connection finished I recently dpkg --purge pptpd and I thought I got
this removed, so why am I getting these spit out in the logs?
I'd rather see only specific stuff, like known
attacks and portscans.
- Kath
|
- Re: [techtalk] Better snort/logcheck reporting Kath
- Re: [techtalk] Better snort/logcheck reporting Nicole Zimmerman
- [techtalk] pine and virtual domains Makiko Itoh
- Re: [techtalk] pine and virtual domains James A . Sutherland
- Re: [techtalk] pine and virtual doma... Makiko Itoh
- Re: [techtalk] pine and virtual... James A . Sutherland
- Re: [techtalk] pine and virtual... Akkana
- Re: [techtalk] pine and vir... Makiko Itoh
- Re: [techtalk] pine and... James A . Sutherland
- Re: [techtalk] pine and... jenn
- Re: [techtalk] pine and... Makiko Itoh
