Jason Wertz on Thu, 8 Mar 2001 13:52:14 -0500 |
>The solution for those people is not to hide from the problem, but >to learn a bit about their system and implement some real security. I'm in the process of learning more about "real" security and increasing the security of my machines and have found portsentry along with logcheck...http://www.psionic.com/abacus/logcheck to be very useful for detecting oddities and automating log audits. The more I learn the more I'm sure I'll move to better practices, but I view these tools as better then nothing at my current level of security know-how. Most script kiddies seem to target linux machines with a .edu address because they know most colleges have limited resources and tend to use Linux for the price w/o really knowing much about it (one big honeypot). I like the fact that PortSentry just keeps me aware of how often we are being portscanned, no matter who is doing it. I don't really care that I'm being scanned but I just want to be aware of it. I'm not really using the utility for security by obscurity, by the number of scans detected in a week people definitely know were here. I'm looking forward to attending the meeting on the14th (my first). Thanks, Jason Jason Wertz Instructional Technology Specialist / WebMaster Delaware County Community College ______________________________________________________________________ Philadelphia Linux Users Group - http://www.phillylinux.org Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce General Discussion - http://lists.phillylinux.org/mail/listinfo/plug
|
|