Great Circle Associates Firewalls
(June 1997) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Commonly hacked ports
From: Alan <alano @ teleport . com>
Date: Fri, 6 Jun 1997 14:00:29 -0700 (PDT)
To: firewalls @ greatcircle . com 
I am setting up a few booby traps (ala Klaxon and the like) for various
ports on my firewall at work.  Any suggestions as to "commonly hacked
ports" that I should put detectors on?  (I am currently covering the
obvious ones like tftp and nfsd.)

Also, suggestions on good ways to identify attackers (other than identd
and finger) are also welcome.

alano @
 teleport .
 com | "Those who are without history are doomed to retype it."
Indexed By Date Previous: Re: Stateful Packet Filters vs. Proxies
From: Ryan Russell/SYBASE <Ryan . Russell @ sybase . com>
Next: Re: FW-1 and IP Forwarding on NT Box
From: "David Harvey-George" <david @ threewiz . demon . co . uk>
Indexed By Thread Previous: relative security of Proxies vs. SPFs
From: John Stewart <johns @ heurikon . com>
Next: Re: MS TCP/IP BUG ?!
From: "David Harvey-George" <david @ threewiz . demon . co . uk>
Google
 
Search Internet Search www.greatcircle.com