Date: Tue, 15 Oct 2002 23:28:19 -0700 From: Steve Reid <sreid@sea-to-sky.net> To: Maildrop <maildrop@qwest.net> Cc: freebsd-security@freebsd.org Subject: Re: FW: monitor ALL connections to ALL ports Message-ID: <20021016062819.GA10090@coredump> In-Reply-To: <20021015175714.6ecbd83a.kzaraska@student.uci.agh.edu.pl> References: <NGBBIILBAKIFGHHCHOHPOEODFJAA.maildrop@qwest.net> <20021014145602.K1231-100000@fubar.adept.org> <20021015175714.6ecbd83a.kzaraska@student.uci.agh.edu.pl>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Oct 15, 2002 at 05:57:14PM +0200, Krzysztof Zaraska wrote: > I think it would be more useful to log only opening of the > connection; this can be accomplished using for example a 'setup' > keyword, e.g.: I believe there is also a "log in vain" sysctl variable to cause the kernel to log connection attempts to non-listening ports. Seems to be a quick and easy way to get what you want. The ipfw way is more flexible though. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20021016062819.GA10090>