Hi!
What means are usually used for logging TCP connections (attempts) and
UDP port scans in Digital UNIX 4.0D? Can the logging be done by kernel?
Thanks,
Gennady.
by Gennady Kuznetso » Fri, 18 May 2001 15:25:17
What means are usually used for logging TCP connections (attempts) and
UDP port scans in Digital UNIX 4.0D? Can the logging be done by kernel?
Thanks,
Gennady.
by Michael Fu » Wed, 23 May 2001 01:15:53
http://www.tcpdump.org/
You could also use a search engine to look for an Intrusion Detection
System (IDS) that uses libpcap.
--
Michael Fuhr
http://www.fuhr.org/~mfuhr/
by Norm » Sat, 26 May 2001 18:01:30
> What means are usually used for logging TCP connections (attempts) and
> UDP port scans in Digital UNIX 4.0D? Can the logging be done by kernel?
> Thanks,
> Gennady.
http://www.snort.org
you will need libpcap.a from http://www.tcpdump.org
by Norm » Mon, 28 May 2001 12:03:21
> What means are usually used for logging TCP connections (attempts) and
> UDP port scans in Digital UNIX 4.0D? Can the logging be done by kernel?
> Thanks,
> Gennady.
Hi!
I have some questions about TCP/UDP logging
in Digital UNIX 4.0D...
1) What means are intended for TCP/UDP traffic (connection
attempts, port scanning) logging in Digital UNIX 4.0D?
2) Is it possible to make kernel to log this?
Thanks,
Gennady.
----- Posted via NewsOne.Net: Free (anonymous) Usenet News via the Web -----
http://newsone.net/ -- Free reading and anonymous posting to 60,000+ groups
NewsOne.Net prohibits users from posting spam. If this or other posts
2. how to disallow the user to create new dicrectories
3. ipchains/TCP/UDP, Why should I open UDP ports so that my TCP ports can work?
5. Chaosreader: Process snoop logs into TCP/UDP streams
6. Compilation cannot "see" files
7. Log TCP Communication between client and Server (tee for TCP)
8. Emacs-lisp utilities for rcs
9. FireWall-1 & High UDP/TCP ports
11. How do I find/get free TCP/UDP ports
12. MASQ: fail TCP/UDP checksum
13. kernel: MASQ: failed TCP/UDP checksum from x.x.x.x!