> In our case, it is more logical to block access entirely. FTP scans are not > the only areas we have seen problems recently from these domains. Our sites > do not benefit from international access, if they did we would be more > likely to use the suggestion Gerald Waugh made in adding "in.proftpd : > .wanadoo.fr .t-dialin.net" to the hosts.deny file. I am not at a point that > I would be comfortable adding IPchains to our server. >
What? I would think you would be uncomfortable not running ipchains. How are you protected from ip spoofing? Just to mention one comfortable thing about ipchains. Gerald _______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
