Re: [expert] Port scanning myself?

Thu, 28 Sep 2000 00:41:48 -0700 

There is nmap for port scanning, nessus (in contrib : more complete with 
plugin for holes search), you can use /usr/sbin/msec "custom" to configurate 
Security Check , Diff Check , system check and otheras ....(sent to root)

/etc/security/msec/security.conf looks like :

# Mandrake-Security : if you remove this comment, remove the next line too.
CHECK_SECURITY=yes
# Mandrake-Security : if you remove this comment, remove the next line too.
CHECK_PERMS=yes
# Mandrake-Security : if you remove this comment, remove the next line too.
CHECK_SUID_ROOT=yes
# Mandrake-Security : if you remove this comment, remove the next line too.
CHECK_SUID_MD5=yes
# Mandrake-Security : if you remove this comment, remove the next line too.
CHECK_SUID_GROUP=yes
# Mandrake-Security : if you remove this comment, remove the next line too.
CHECK_WRITEABLE=yes
# Mandrake-Security : if you remove this comment, remove the next line too.
CHECK_UNOWNED=no
# Mandrake-Security : if you remove this comment, remove the next line too.
CHECK_PROMISC=yes
# Mandrake-Security : if you remove this comment, remove the next line too.
CHECK_OPEN_PORT=yes
# Mandrake-Security : if you remove this comment, remove the next line too.
CHECK_PASSWD=yes
# Mandrake-Security : if you remove this comment, remove the next line too.
CHECK_SHADOW=yes
# Mandrake-Security : if you remove this comment, remove the next line too.
TTY_WARN=no
# Mandrake-Security : if you remove this comment, remove the next line too.
MAIL_WARN=yes
# Mandrake-Security : if you remove this comment, remove the next line too.
MAIL_USER=root
# Mandrake-Security : if you remove this comment, remove the next line too.
SYSLOG_WARN=yes 

There is also portsentry a reactive tool for blocking port scanning (in 
cooker) 

Also ipchains can help to exclude some "bad" nets or to close your machine...

Hoping can help...;o)                    

----- Original Message -----
            From: "Michael" <[EMAIL PROTECTED]>
            To: <[EMAIL PROTECTED]>
            Sent: Sunday, September 24, 2000 6:59 PM
            Subject: [expert] Port scanning myself?


            > Does anyone know if Mandrake comes w/ any port scanning and/or
            > anti-portscan software by default? I want to see if I have 
anything
            open I
            > don't mean to and then start blocking port scanning. Thanks.
            >
-- 
-
Franco Silvestro
c/o CeSIA - Universita' degli Studi di Bologna


Keep in touch with http://mandrakeforum.com: 
Subscribe the "[EMAIL PROTECTED]" mailing list.

Reply via email to