[NTLUG:Discuss] open ports
Jason Fortezzo
fortezzo at directlink.net
Fri Jun 9 03:28:51 CDT 2000
At 01:15 PM 6/8/00, you wrote:
>Also nmap can tell what OS & Kernel the machine is running,
>does anyone know how I can prevent nmap or other scanners
>from detecting the OS?
One method would be to cripple port scans all together. Grab
PortSentry from http://www.psionic.com/abacus/portsentry/.
PortSentry will detect all your favorite port scans and then use
ipchains to setup a deny rule. To the script kiddie, it would
appear your machine ceased to exist as all communication
goes to the bit bucket. It is very easy to configure and run.
Jason Fortezzo
fortezzo at directlink.net
http://galvani.tamu.edu/~bigjason/pgpkey
---
If you have any trouble sounding condescending,
find a Unix user to show you how it's done.
--Scott Adams
More information about the Discuss
mailing list