|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|
Re: [PLUG] portmap and other things
|
>The solution for those people is not to hide from the problem, but
>to learn a bit about their system and implement some real security.
I'm in the process of learning more about "real" security and increasing the security of my machines and have found portsentry along with logcheck...http://www.psionic.com/abacus/logcheck to be very useful for detecting oddities and automating log audits. The more I learn the more I'm sure I'll move to better practices, but I view these tools as better then nothing at my current level of security know-how.
Most script kiddies seem to target linux machines with a .edu address because they know most colleges have limited resources and tend to use Linux for the price w/o really knowing much about it (one big honeypot). I like the fact that PortSentry just keeps me aware of how often we are being portscanned, no matter who is doing it. I don't really care that I'm being scanned but I just want to be aware of it. I'm not really using the utility for security by obscurity, by the number of scans detected in a week people definitely know were here.
I'm looking forward to attending the meeting on the14th (my first).
Thanks,
Jason
Jason Wertz
Instructional Technology Specialist / WebMaster
Delaware County Community College
______________________________________________________________________
Philadelphia Linux Users Group - http://www.phillylinux.org
Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce
General Discussion - http://lists.phillylinux.org/mail/listinfo/plug
|
|