Monitoring file integrity with FC4 - Tripwire??
Jeff Vian
jvian10 at charter.net
Mon Oct 3 03:27:46 UTC 2005
On Mon, 2005-10-03 at 11:41 +1000, Ian wrote:
>
> Scot L. Harris wrote:
>
> >On Sat, 2005-10-01 at 18:53, Ian Harris wrote:
> >
> >
> >>On Sat, 1 Oct 2005 01:46 pm, Scot L. Harris wrote:
> >>
> >>
snip
> Excellent advice. I don't have any servers or a network though, my PC is
> just a home PC connected directly to the net.
> At one stage I had a home network set up with Smoothwall on a dedicated
> PC, which had snort enabled. I used to check the logs occasionally, and
> I was always gobsmacked at how many attempts to hack the box were
> recorded. Hundreds a day sometimes.
> Cheers, Ian
>
I beg to differ with you.
Your home PC attached to the net IS on a network and IS a server. The
complete list of services you have enabled is optional but by default
some are (assuming Linux of course), and thus tools for protection are
needed. I get attacks on httpd and on sshd (the only ports I allow
remote connection to) regularly in a similar scenario.
Different types and styles of networking have differing requirements but
even a single home PC needs some form of protection (unless it is
stand-alone and never connects to ANY network - a rarity indeed
nowdays).
More information about the fedora-list
mailing list