[TriLUG] PortSentry...
Mike Johnson
mike at enoch.org
Tue Jan 15 23:30:22 EST 2002
Daniel Jerome [dan at inphoworx.com] wrote:
> Does anyone have anything to say about PortSentry?
Nope. Nothing good to say. I've got nothing against the code
itself, or anything, but I don't like the approach. For it to
work, you have to let the ports through your firewall. I prefer
to read firewall logs or use a network IDS.
> If you think it is a good piece of software, can you send me a safe URL?
http://www.psionic.com/abacus/portsentry
> Is there something better out there?
For what? PortSentry has a few different uses. What are you trying
to do?
> If this is the sort of thing that floats your boat, do you have any good
> kiddy scripts that can be used for network analysis?
Um. Kiddy scripts? You're on your own.
Portscanner: nmap (http://www.insecure.org/nmap)
Vulnerability Analysis: nessus (http://www.nessus.org)
Mike
--
"Yeah it is! Cause he's bakin' in the...kitchen of darkness! A pie of
lost souls...until it's golden brown!" -- Moltar on Space Ghost
GNUPG Key fingerprint = ACD2 2F2F C151 FB35 B3AF C821 89C4 DF9A 5DDD 95D1
GNUPG Key = http://www.enoch.org/mike/mike.pubkey.asc
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 230 bytes
Desc: not available
URL: <http://www.trilug.org/pipermail/trilug/attachments/20020115/725b81ef/attachment.pgp>
More information about the TriLUG
mailing list