[rescue] OT: open TCP port - followup
Phil Brutsche
rescue at sunhelp.org
Wed Aug 1 22:53:28 CDT 2001
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
A long time ago, in a galaxy far, far way, someone said...
> Looks like the culprit is portsentry! After killing it, that port is
> no longer open. Interesting. Is portsentry opening ports by scanning
> them?
Correct. IIRC that's standard behavior on non-Linux systems.
On Linux portsentry has a "stealth" mode that allows it to detect
connection attempts while not actively listening on the appropriate port.
> Perhaps I shouldn't run it any more.
Your call. I hear snort is pretty interesting, though.
> Any comments on this?
You just found out the reason why I don't run it :)
> I *hate* being cracked!
Doesn't everyone?
- --
- ----------------------------------------------------------------------
Phil Brutsche pbrutsch at tux.creighton.edu
GPG fingerprint: 9BF9 D84C 37D0 4FA7 1F2D 7E5E FD94 D264 50DE 1CFC
GPG key id: 50DE1CFC
GPG public key: http://tux.creighton.edu/~pbrutsch/gpg-public-key.asc
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: Made with pgp4pine
iD8DBQE7aM7A/ZTSZFDeHPwRAlSZAJwPrs9jBMxOTV9ArScZOngAbmA7zACfSNQz
MV3vmKhDOb/xxLbFV9BPZYU=
=ShgK
-----END PGP SIGNATURE-----
More information about the rescue
mailing list