[TCLUG] Re: [TCLUG:22365] Hacked

[Scott Dier]

* Austad, Jay <austad at marketwatch.com> [001008 16:24]:
> If you're feeling really adventurous, set up snort
> (http://www.whitehats.com/ids).  This will give you a good idea of whose
> banging on your door.  It's funny to see people running windows exploits

On the flipside, if you have (tens of) thousands to throw away, check
out NFR and anzen flightjacket.  Yeah, its a windows frontend, but the
backend is openbsd, and its helped us *immensely* at cs.umn.edu in
finding out whats going on with 'strange' traffic, or other such
problems.

-- 
Scott Dier <dieman at ringworld.org> #nicnac at efnet 
http://www.ringworld.org/  finger:dieman at destiny.ringworld.org

<CmdrTaco:#kuro5hin> SLSAHDOT IS ALWAYS NEWS FOR NERDS.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 233 bytes
Desc: not available
Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20001008/64aa96bf/attachment.pgp
-------------- next part --------------
---------------------------------------------------------------------
To unsubscribe, e-mail: tclug-list-unsubscribe at mn-linux.org
For additional commands, e-mail: tclug-list-help at mn-linux.org