Re: port scan logger

2000-06-20 Thread Brad 
On Tue, Jun 20, 2000 at 05:02:30AM +, Pollywog wrote:
> On Tue, 20 Jun 2000, Irwan Hadi wrote:
> >
> > why not using portsentry
> > grab it at www.freshmeat.net
> 
> I recommend using it with Logcheck, available from the same website as 
> Portsentry.

Logcheck is Debianized in potato main, portsentry in woody non-free (it
may install without trouble in potato as well, since unstable hasn't had
much chance yet to diverge).


-- 
  finger for GPG public key.


pgpNLLdcm5EiJ.pgp
Description: PGP signature

Re: port scan logger

2000-06-20 Thread Pollywog 
On Tue, 20 Jun 2000, Irwan Hadi wrote:
> At 06:00 PM 6/18/00 +0200, Sven Burgener wrote:
> >Hi all
> >
> > >From other Linux systems, I know about the port scan-logger scanlogd. It
> >
> >seems that this is not in the debian distro. Are there any (good)
> >alternatives?
>
> why not using portsentry
> grab it at www.freshmeat.net

I recommend using it with Logcheck, available from the same website as 
Portsentry.

--
Andrew

Re: port scan logger

2000-06-19 Thread Irwan Hadi 

At 06:00 PM 6/18/00 +0200, Sven Burgener wrote:

Hi all

>From other Linux systems, I know about the port scan-logger scanlogd. It
seems that this is not in the debian distro. Are there any (good)
alternatives?

why not using portsentry
grab it at www.freshmeat.net

Re: port scan logger

2000-06-19 Thread Sven Gaerner 
Hi,

try the program snort for detecting intrusions or install the iplogger package 
that logs all ip connections to your machine.

Sven

Re: port scan logger

2000-06-18 Thread Randy Edwards 
> Can I do that even although it's under the "unstable" / woody packages?
> Sorry if this is a stupid question. :) What do I need to watch out for?

   Not a stupid question at all.

   When installing packages from other releases the main thing you have to
worry about is dependencies -- e.g. If I install package Y from
woody/unstable, will it require that I update libc, apache, bash, and/or
other things which I don't want updated from unstable?

   In the case of scanlogd, it doesn't have an odd dependencies -- it'll
install smoothly into potato/frozen.

   The thing to watch out for is new releases.  Unstable is unstable.  Since
you're not tracking woody in dselect or sources.list, you're not going to
automatically be notified if a new version or bug fix release of scanlogd
comes out.

-- 
 Regards, | <[EMAIL PROTECTED]>   | Upgrade your old legacy NT
 .|  | machines to GNU/Linux!
 Randy|   | See http://www.debian.org

Re: port scan logger

2000-06-18 Thread Pollywog 
On Sun, 18 Jun 2000, Sven Burgener wrote:
> On Sun, Jun 18, 2000 at 06:29:27PM +, Pollywog wrote:
> > > On Sun, Jun 18, 2000 at 04:55:38PM +, Pollywog wrote:
> > > > Check it out:
> > > >
> > > > http://www.debian.org/Packages/unstable/net/scanlogd.html
> >
> > I just downloaded it and installed it to Potato.
>
> Can I do that even although it's under the "unstable" / woody packages?
> Sorry if this is a stupid question. :) What do I need to watch out for?

I would watch out for apt-get attempting to remove or install other packages, 
but that did not happen when I installed the package.  I installed it with 
dpkg, though.

I am not yet sure syslogd is working, but it did start up.

--
Andrew

Re: port scan logger

2000-06-18 Thread Sven Burgener 
On Sun, Jun 18, 2000 at 06:29:27PM +, Pollywog wrote:

> > On Sun, Jun 18, 2000 at 04:55:38PM +, Pollywog wrote:
> > > Check it out:
> > >
> > > http://www.debian.org/Packages/unstable/net/scanlogd.html

> I just downloaded it and installed it to Potato.

Can I do that even although it's under the "unstable" / woody packages?
Sorry if this is a stupid question. :) What do I need to watch out for?

TIA
Sven
-- 
Powered by Debian GNU/Linux 2.2

Re: port scan logger

2000-06-18 Thread Pollywog 
On Sun, 18 Jun 2000, Sven Burgener wrote:
> On Sun, Jun 18, 2000 at 04:55:38PM +, Pollywog wrote:
> > Check it out:
> >
> > http://www.debian.org/Packages/unstable/net/scanlogd.html
>
> It seems as though it only became part of debian recently as I
> cannot find it in potato / frozen.  Hmm... I actually would quite
> like to have it on my potato box. Would it make sense for me to
> use / upgrade to woody in this case?

I just downloaded it and installed it to Potato.

--
Andrew

Re: port scan logger

2000-06-18 Thread Sven Burgener 
On Sun, Jun 18, 2000 at 04:55:38PM +, Pollywog wrote:
 
> Check it out:
> 
> http://www.debian.org/Packages/unstable/net/scanlogd.html

It seems as though it only became part of debian recently as I 
cannot find it in potato / frozen.  Hmm... I actually would quite 
like to have it on my potato box. Would it make sense for me to 
use / upgrade to woody in this case?

> I did not know about it.
> Thanks

Welcome. :)

Sven
-- 
Powered by Debian GNU/Linux 2.2

port scan logger

2000-06-18 Thread Sven Burgener 
Hi all

>From other Linux systems, I know about the port scan-logger scanlogd. It
seems that this is not in the debian distro. Are there any (good)
alternatives?

TIA
Sven
-- 
Powered by Debian GNU/Linux 2.2