Mailing List Archive

On Mon, Jul 09, 2007 at 08:35:19PM +0200, debian wrote:
> Hello,

Hi,

> i search a solution to detect scan port, i find psd patch, but now with the
> last version of iptables, psd patch is not supported. An over solution is
> possible?
>

What about creating your own rules with the recent match according to
what flag is set ?

--
Franck Joncourt
http://www.debian.org - http://smhteam.info/wiki/
GPG server : pgpkeys.mit.edu
Fingerprint : C10E D1D0 EF70 0A2A CACF 9A3C C490 534E 75C0 89FE

Try to use 'stealth' module from GRsecurity patchset.
It will detect stealth scans, but you need patched kernel and iptables.

debian wrote:
> Hello,
>
> i search a solution to detect scan port, i find psd patch, but now
> with the last version of iptables, psd patch is not supported. An over
> solution is possible?
>
> Thanks you.
--
Best regards,
Dmitry Zamaruev,
Team leader,
System integration dept.,
NIX Solutions Ltd.

maybe portsentry???

--- debian <debian70@gmail.com> escribió:

> Hello,
>
> i search a solution to detect scan port, i find psd
> patch, but now with
> the last version of iptables, psd patch is not
> supported. An over
> solution is possible?
>
> Thanks you.
>
>
>



____________________________________________________________________________________
¡Sé un mejor ambientalista!
Encuentra consejos para cuidar el lugar donde vivimos.
http://mx.yahoo.com/promos/mejorambientalista.html