Brad writes:
> Thanks Mad Scientist, your suggestion works fine, I've just got to decide if
> the security risk is worth it. The DoS attacks that this script stops have
> recently been totally taking my production system down.
If all you're doing is adding rules and not removing, you could write the
script such that it takes an IP as a parameter and adds that IP to the DROP
list. That limits your vulnerability to "fail safe" - i.e. if somebody
breaks in, they can only increase your security for you. Fail safe always
leaves you vulnerable to DoS (e.g. they can set it to deny everything), but
you don't risk loss of data/privacy.
Good luck.
-Mad
--
Madness is soil in which creativity grows
- Chris Bielek
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
