Re: Kinda OT: Dealing with cracker attempts...

To: ron@microtronics.com.au (Ron)
Cc: debian-devel@lists.debian.org
Subject: Re: Kinda OT: Dealing with cracker attempts...
From: aaron@espresso.hampshire.edu (aaron .'. culich)
Date: 05 Jul 1999 16:03:27 -0400
Message-id: <[🔎] 87g132q2y8.fsf@ghoti.hampshire.edu>
In-reply-to: <[🔎] m111Dua-0005D9C@ronland.oz> (Ron's message of "Tue, 6 Jul 1999 04:26:16 +0930 (CST)")
References: <[🔎] 87n1xboy13.fsf@ghoti.hampshire.edu> <[🔎] m111Dua-0005D9C@ronland.oz>

> ..heres a hint, have you ever stuck a microphone in front of a p.a. speaker
> and turned the gain up really high??

Getting into that kind of loop is what the following part of the
script avoids:

ABUSER=`/bin/grep -x $2 $LOGFILE`
if [ "$ABUSER" == "" ]; then
  echo $2 >> $LOGFILE;

It will only do it once per host.  When it comes to spoofed packets,
isn't that what good firewall rules are for-- catching those naughty
kinds of packets?

This little script is just an instrument for gathering a little
possibly useful information and is meant to fit in with other security 
measures; it's shouldn't just stand alone.

-aaron

Reply to:

Follow-Ups:
- Re: Kinda OT: Dealing with cracker attempts...
  - From: ron@microtronics.com.au (Ron)

References:
- Re: Kinda OT: Dealing with cracker attempts...
  - From: aculich@hampshire.edu (aaron .'. culich)
- Re: Kinda OT: Dealing with cracker attempts...
  - From: ron@microtronics.com.au (Ron)

Prev by Date: Re: /opt (Re: Berlin & FSSTND/FHS)
Next by Date: Source patches for packages
Previous by thread: Re: Kinda OT: Dealing with cracker attempts...
Next by thread: Re: Kinda OT: Dealing with cracker attempts...
Index(es):
- Date
- Thread