Re: Intrusion Attempts

To: debian-security@lists.debian.org
Subject: Re: Intrusion Attempts
From: Omen Wild <Omen.Wild@Dartmouth.EDU>
Date: Tue, 10 Dec 2002 10:43:49 -0500
Message-id: <20021210154349.GA31236@descolada.dartmouth.edu>
In-reply-to: <86wumivvib.fsf@potato.vegetable.org.uk>
References: <14c.184c51f1.2b1ec030@aol.com> <20021210102408.2275b830.ariel@mejujuy.gov.ar> <86wumivvib.fsf@potato.vegetable.org.uk>

Quoting Tim Haynes <debian@stirfried.vegetable.org.uk> on Tue, Dec 10 13:44:
>
> c) having to have no firewall, or extra holes in a firewall, in order to
>    detect a finite set of events seems daft when you could just be blocking
>    them already by default.

So don't poke extra holes in the firewall, but instead use portsentry
as a second layer of defense.  If for some reason the firewall totally
breaks (as it did once on a dist-upgrade), portsentry will be ready to
defend.

Omen

-- 
If A = B and B = C, then A = C, except where void or prohibited by law.

Reply to:

References:
- Intrusion Attempts
  - From: Trawets53@aol.com
- Re: Intrusion Attempts
  - From: Ariel Graneros <ariel@mejujuy.gov.ar>
- Re: Intrusion Attempts
  - From: Tim Haynes <debian@stirfried.vegetable.org.uk>

Prev by Date: Re: Intrusion Attempts
Next by Date: Fuera estrés ya !!!
Previous by thread: Re: Intrusion Attempts
Next by thread: Re: Intrusion Attempts
Index(es):
- Date
- Thread