Matthew Kennedy wrote:
>
> Looks like you have two types of scum in there: Nimda and one of the
> two Red Code versions. I have a sed and awk combo using a named-fifo
> at home that will filter out the junk and log offending IP numbers
> and timestamps *on the fly*.
Would you ming posting these scripts here (or mail them to me in
private) and tell me how to make it work?
> I'm still not sure what to do that information though...
Write new iptables rules to block these IP addresses (at least for a
while) so you won't get scanned again from them. But I fear you'll have
to "service network restart" every time, but I'm not sure about it.
Best regards,
Martin Stricker
--
Homepage: http://www.martin-stricker.de/
Registered Linux user #210635: http://counter.li.org/
_______________________________________________
Seawolf-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/seawolf-list
