Firewall Wizards mailing list archives

Re: stealth ports and IDS

From: "Anton A. Chuvakin" <anton () chuvakin org>
Date: Thu, 3 Oct 2002 10:59:29 -0400 (EDT)

James and all,

address or stack. I do not know of a way of acheiving this using linux
or netBSD etc.. and without it I would feel rather vulnerable. To help

Well, in Linux its really simple:

ifconfig eth1 up

with enable the interface with no IP. Just use the snort with "snort -i
eth1" and you are in action.

Best,
-- 
  Anton A. Chuvakin, Ph.D., GCIA
     http://www.chuvakin.org
   http://www.info-secure.org

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

SANS Top Ten and Commercial Firewalls Gary Flynn (Oct 02)
- Re: SANS Top Ten and Commercial Firewalls H. Morrow Long (Oct 02)
- Re: SANS Top Ten and Commercial Firewalls Devdas Bhagat (Oct 02)
  - stealth ports and IDS James X (Oct 03)
    - Re: stealth ports and IDS Anton A. Chuvakin (Oct 03)
    - Re: stealth ports and IDS Kevin Steves (Oct 03)
    - Re: stealth ports and IDS Paul D. Robertson (Oct 03)
    - Re: stealth ports and IDS Robert McMahon (Oct 03)
    - Re: stealth ports and IDS Nilesh Chaudhari (Oct 05)
    - Re: stealth ports and IDS Zen (Oct 03)
    - Re: stealth ports and IDS Paul D. Robertson (Oct 03)
    - Re: stealth ports and IDS Todd Underwood (Oct 03)
    - Re: stealth ports and IDS Jim MacLeod (Oct 03)
    - RE: stealth ports and IDS Ben Nagy (Oct 04)
    - RE: stealth ports and IDS Frank Knobbe (Oct 04)

(Thread continues...)