portsentry only blocking once - need to restart

To: debian-user@lists.debian.org
Subject: portsentry only blocking once - need to restart
From: Jochen Kaechelin <gissmoh@gmx.de>
Date: Sat, 7 May 2005 22:19:48 +0200
Message-id: <[🔎] 200505072219.48789.gissmoh@gmx.de>
Reply-to: gissmoh@gmx.de

I have the following problem:

Wenn I do a nmap to a portsentry protected host
I will be blocked after 3 scans with the following command:

KILL_RUN_CMD="/sbin/iptables -I INPUT -s $TARGET$ -j DROP"

When I flush iptables (iptables -F) and try to nmap
the host again portsentry does not block it again.

I have to do a "/etc/init.d/portsentry restart" to get
blocked again!

A bug or a feature?

#####
portsentry:
  Installed: 1.2-6
  Candidate: 1.2-6
  Version Table:
 *** 1.2-6 0
        500 http://ftp-stud.fht-esslingen.de sarge/main Packages
        500 http://ftp.de.debian.org sarge/main Packages
        100 /var/lib/dpkg/status

-- 
Jochen Kaechelin || www.gissmoh.de

Reply to:

Follow-Ups:
- Re: portsentry only blocking once - need to restart
  - From: "Todd A. Jacobs" <nospam@codegnome.org>

Prev by Date: Re: package search
Next by Date: suddenly, strange segfaults, kernel logs
Previous by thread: Re: Audio CD Burning Perplexities
Next by thread: Re: portsentry only blocking once - need to restart
Index(es):
- Date
- Thread