This message is in MIME format. Since your mail reader does not understand
this format, some or all of this message may not be legible.
------_=_NextPart_001_01C04905.04A8A840
Content-Type: text/plain;
charset="iso-8859-1"
You can download a tool called portsentry which will monitor portscans and
can also add them to your hosts.deny file. It is a wonderful program!
Rich
-----Original Message-----
From: William J Wheatley [mailto:[EMAIL PROTECTED]]
Sent: Monday, November 06, 2000 10:50 AM
To: Fusebox
Subject: Re: (Admin) Stop!!!
Hrm how do you monitor what ports are scanned on linux 6.2 what log is that
secure or messages? i cant seem to find it anywhere
Bill Wheatley
Director of Development
Allaire Certified ColdFusion Developer
AEPS INC
Allaire ColdFusion Consulting Partner
www.aeps.com
www.aeps2000.com
954-472-6684 X303
ICQ: 417645
----- Original Message -----
From: "Dave McKenna" <[EMAIL PROTECTED]>
To: "Fusebox" <[EMAIL PROTECTED]>
Sent: Monday, November 06, 2000 8:56 AM
Subject: RE: (Admin) Stop!!!
> A port scanner is software that can typically be set to analyze a range of
> ports on a given IP address or range of addresses. I used to use one
fairly
> frequently on an enterprise network I administered, looking for things
like
> unauthorized web & FTP servers, etc. A knowledgeable individual could use
> one to scan for open ports on a given network address, to help find
> vulnerabilities they can exploit to gain access. As has been posted here
> previously, port scanning happens frequently; people will scan ranges of
> addresses just snooping around. Most network administrators I know don't
> generally view a port scan as a direct assault or precursor to an assault,
> but I can see where "those other guys" are getting their knickers in a
> twist. They may have noticed an increase in the frequency of scans lately
> (which would be a big-time attention grabber), or (much more likely), they
> only recently ever bothered to watch for port scans, saw some, and flipped
> out. Oh, and by the way... it's usually pretty trivial to determine the
> source of a port scan, unless the person doing the scanning actually knows
> what they are doing. That's not usually the case these days, though.
>
> > -----Original Message-----
> > From: Kola Oyedeji [mailto:[EMAIL PROTECTED]]
> > Sent: Monday, November 06, 2000 7:18 AM
> > To: Fusebox
> > Subject: RE: (Admin) Stop!!!
> >
> >
> > for us newbies ..
> >
> > what exactly are port scans anyway.?
>
> --------------------------------------------------------------------------
----
> To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/fusebox or
send a message to [EMAIL PROTECTED] with 'unsubscribe' in
the body.
>
----------------------------------------------------------------------------
--
To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/fusebox or
send a message to [EMAIL PROTECTED] with 'unsubscribe' in
the body.
------_=_NextPart_001_01C04905.04A8A840
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =
charset=3Diso-8859-1">
<META NAME=3D"Generator" CONTENT=3D"MS Exchange Server version =
5.5.2650.12">
<TITLE>RE: (Admin) Stop!!!</TITLE>
</HEAD>
<BODY>
<P><FONT SIZE=3D2>You can download a tool called portsentry which will =
monitor portscans and can also add them to your hosts.deny file. =
It is a wonderful program!</FONT></P>
<P><FONT SIZE=3D2>Rich</FONT>
</P>
<P><FONT SIZE=3D2>-----Original Message-----</FONT>
<BR><FONT SIZE=3D2>From: William J Wheatley [<A =
HREF=3D"mailto:[EMAIL PROTECTED]">mailto:[EMAIL PROTECTED]</A>]</FONT>
<BR><FONT SIZE=3D2>Sent: Monday, November 06, 2000 10:50 AM</FONT>
<BR><FONT SIZE=3D2>To: Fusebox</FONT>
<BR><FONT SIZE=3D2>Subject: Re: (Admin) Stop!!!</FONT>
</P>
<BR>
<P><FONT SIZE=3D2>Hrm how do you monitor what ports are scanned on =
linux 6.2 what log is that</FONT>
<BR><FONT SIZE=3D2>secure or messages? i cant seem to find it =
anywhere</FONT>
</P>
<BR>
<P><FONT SIZE=3D2>Bill Wheatley</FONT>
<BR><FONT SIZE=3D2>Director of Development</FONT>
<BR><FONT SIZE=3D2>Allaire Certified ColdFusion Developer</FONT>
<BR><FONT SIZE=3D2>AEPS INC</FONT>
<BR><FONT SIZE=3D2>Allaire ColdFusion Consulting Partner</FONT>
<BR><FONT SIZE=3D2>www.aeps.com</FONT>
<BR><FONT SIZE=3D2>www.aeps2000.com</FONT>
<BR><FONT SIZE=3D2>954-472-6684 X303</FONT>
<BR><FONT SIZE=3D2>ICQ: 417645</FONT>
</P>
<BR>
<P><FONT SIZE=3D2>----- Original Message -----</FONT>
<BR><FONT SIZE=3D2>From: "Dave McKenna" =
<[EMAIL PROTECTED]></FONT>
<BR><FONT SIZE=3D2>To: "Fusebox" =
<[EMAIL PROTECTED]></FONT>
<BR><FONT SIZE=3D2>Sent: Monday, November 06, 2000 8:56 AM</FONT>
<BR><FONT SIZE=3D2>Subject: RE: (Admin) Stop!!!</FONT>
</P>
<BR>
<P><FONT SIZE=3D2>> A port scanner is software that can typically be =
set to analyze a range of</FONT>
<BR><FONT SIZE=3D2>> ports on a given IP address or range of =
addresses. I used to use one</FONT>
<BR><FONT SIZE=3D2>fairly</FONT>
<BR><FONT SIZE=3D2>> frequently on an enterprise network I =
administered, looking for things</FONT>
<BR><FONT SIZE=3D2>like</FONT>
<BR><FONT SIZE=3D2>> unauthorized web & FTP servers, etc. =
A knowledgeable individual could use</FONT>
<BR><FONT SIZE=3D2>> one to scan for open ports on a given network =
address, to help find</FONT>
<BR><FONT SIZE=3D2>> vulnerabilities they can exploit to gain =
access. As has been posted here</FONT>
<BR><FONT SIZE=3D2>> previously, port scanning happens frequently; =
people will scan ranges of</FONT>
<BR><FONT SIZE=3D2>> addresses just snooping around. Most =
network administrators I know don't</FONT>
<BR><FONT SIZE=3D2>> generally view a port scan as a direct assault =
or precursor to an assault,</FONT>
<BR><FONT SIZE=3D2>> but I can see where "those other =
guys" are getting their knickers in a</FONT>
<BR><FONT SIZE=3D2>> twist. They may have noticed an increase =
in the frequency of scans lately</FONT>
<BR><FONT SIZE=3D2>> (which would be a big-time attention grabber), =
or (much more likely), they</FONT>
<BR><FONT SIZE=3D2>> only recently ever bothered to watch for port =
scans, saw some, and flipped</FONT>
<BR><FONT SIZE=3D2>> out. Oh, and by the way... it's usually =
pretty trivial to determine the</FONT>
<BR><FONT SIZE=3D2>> source of a port scan, unless the person doing =
the scanning actually knows</FONT>
<BR><FONT SIZE=3D2>> what they are doing. That's not usually =
the case these days, though.</FONT>
<BR><FONT SIZE=3D2>></FONT>
<BR><FONT SIZE=3D2>> > -----Original Message-----</FONT>
<BR><FONT SIZE=3D2>> > From: Kola Oyedeji [<A =
HREF=3D"mailto:[EMAIL PROTECTED]">mailto:[EMAIL PROTECTED]</A>=
]</FONT>
<BR><FONT SIZE=3D2>> > Sent: Monday, November 06, 2000 7:18 =
AM</FONT>
<BR><FONT SIZE=3D2>> > To: Fusebox</FONT>
<BR><FONT SIZE=3D2>> > Subject: RE: (Admin) Stop!!!</FONT>
<BR><FONT SIZE=3D2>> ></FONT>
<BR><FONT SIZE=3D2>> ></FONT>
<BR><FONT SIZE=3D2>> > for us newbies ..</FONT>
<BR><FONT SIZE=3D2>> ></FONT>
<BR><FONT SIZE=3D2>> > what exactly are port scans =
anyway.?</FONT>
<BR><FONT SIZE=3D2>></FONT>
<BR><FONT SIZE=3D2>> =
------------------------------------------------------------------------=
--</FONT>
<BR><FONT SIZE=3D2>----</FONT>
<BR><FONT SIZE=3D2>> To Unsubscribe visit</FONT>
<BR><FONT SIZE=3D2><A =
HREF=3D"http://www.houseoffusion.com/index.cfm?sidebar=3Dlists&body=3Dli=
sts/fusebox" =
TARGET=3D"_blank">http://www.houseoffusion.com/index.cfm?sidebar=3Dlists=
&body=3Dlists/fusebox</A> or</FONT>
<BR><FONT SIZE=3D2>send a message to [EMAIL PROTECTED] =
with 'unsubscribe' in</FONT>
<BR><FONT SIZE=3D2>the body.</FONT>
<BR><FONT SIZE=3D2>></FONT>
</P>
<P><FONT =
SIZE=3D2>---------------------------------------------------------------=
---------------</FONT>
<BR><FONT SIZE=3D2>To Unsubscribe visit <A =
HREF=3D"http://www.houseoffusion.com/index.cfm?sidebar=3Dlists&body=3Dli=
sts/fusebox" =
TARGET=3D"_blank">http://www.houseoffusion.com/index.cfm?sidebar=3Dlists=
&body=3Dlists/fusebox</A> or send a message to =
[EMAIL PROTECTED] with 'unsubscribe' in the =
body.</FONT></P>
</BODY>
</HTML>
------_=_NextPart_001_01C04905.04A8A840--
------------------------------------------------------------------------------
To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/fusebox or send a
message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
