LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
Reload this Page portsentry problem
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 10-20-2005, 07:05 AM   #1
supervos
LQ Newbie
 
Registered: Oct 2005
Distribution: Fedora core 2
Posts: 1

Rep: Reputation: 0
portsentry problem

Hi,

Ive installed portsentry on my fedora core 2 machine but its not working the way it should. Here's my log. Has anyone got a clou of whats going wrong ??

Thnx

Oct 20 13:15:35 ws1 portsentry[11004]: adminalert: ERROR: could not go into PortSentry mode. Shutting down.
Oct 20 13:15:35 ws1 portsentry[11004]: securityalert: Psionic PortSentry is shutting down
Oct 20 13:15:35 ws1 portsentry[11004]: adminalert: Psionic PortSentry is shutting down
Oct 20 13:23:00 ws1 CROND[11031]: (root) CMD (/sbin/service portsentry restart >/dev/null && /sbin/service iptables restart >/dev/null)
Oct 20 13:23:00 ws1 portsentry[11000]: securityalert: Psionic PortSentry is shutting down
Oct 20 13:23:00 ws1 portsentry[11000]: adminalert: Psionic PortSentry is shutting down
Oct 20 13:23:00 ws1 portsentry[10998]: securityalert: Psionic PortSentry is shutting down
Oct 20 13:23:00 ws1 portsentry[10998]: adminalert: Psionic PortSentry is shutting down
Oct 20 13:23:00 ws1 portsentry[10838]: securityalert: Psionic PortSentry is shutting down
Oct 20 13:23:00 ws1 portsentry[10838]: adminalert: Psionic PortSentry is shutting down
Oct 20 13:23:00 ws1 portsentry[10834]: securityalert: Psionic PortSentry is shutting down
Oct 20 13:23:00 ws1 portsentry[10834]: adminalert: Psionic PortSentry is shutting down
Oct 20 13:23:00 ws1 portsentry: portsentry shutdown succeeded
Oct 20 13:23:00 ws1 portsentry[11066]: adminalert: Psionic PortSentry 1.1 is starting.
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced mode will monitor first 1024 ports
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced mode will manually exclude port: 21
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced mode will manually exclude port: 22
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced mode will manually exclude port: 25
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced mode will manually exclude port: 53
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced mode will manually exclude port: 80
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced mode will manually exclude port: 110
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced mode will manually exclude port: 113
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced mode will manually exclude port: 135
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced mode will manually exclude port: 137
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced mode will manually exclude port: 138
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced mode will manually exclude port: 139
Oct 20 13:23:00 ws1 portsentry: (atcp) succeeded
Oct 20 13:23:00 ws1 portsentry[11070]: adminalert: Psionic PortSentry 1.1 is starting.
Oct 20 13:23:00 ws1 portsentry[11071]: adminalert: Advanced mode will monitor first 1024 ports
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced mode will manually exclude port: 443
Oct 20 13:23:00 ws1 portsentry: (audp) succeeded
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 22
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 25
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 80
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 111
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 443
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 631
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 21
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 22
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 25
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 53
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 80
Oct 20 13:23:00 ws1 portsentry[11071]: adminalert: Advanced mode will manually exclude port: 520
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 110
Oct 20 13:23:00 ws1 portsentry[11071]: adminalert: Advanced mode will manually exclude port: 517
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 113
Oct 20 13:23:00 ws1 portsentry[11071]: adminalert: Advanced mode will manually exclude port: 518
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 135
Oct 20 13:23:00 ws1 portsentry[11071]: adminalert: Advanced mode will manually exclude port: 513
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 137
Oct 20 13:23:00 ws1 iptables: succeeded
Oct 20 13:23:00 ws1 portsentry[11071]: adminalert: Advanced mode will manually exclude port: 138
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 138
Oct 20 13:23:00 ws1 portsentry[11071]: adminalert: Advanced mode will manually exclude port: 137
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 139
Oct 20 13:23:00 ws1 portsentry[11071]: adminalert: Advanced mode will manually exclude port: 123
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 443
Oct 20 13:23:00 ws1 portsentry[11071]: adminalert: Advanced mode will manually exclude port: 68
Oct 20 13:23:00 ws1 iptables: succeeded
Oct 20 13:23:00 ws1 portsentry[11067]: adminalert: PortSentry is now active and listening.
Oct 20 13:23:01 ws1 portsentry[11071]: adminalert: Advanced mode will manually exclude port: 67
Oct 20 13:23:01 ws1 portsentry[11071]: adminalert: Advanced mode will manually exclude port: 53
Oct 20 13:23:01 ws1 portsentry[11071]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 111
Oct 20 13:23:01 ws1 portsentry[11071]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 631
Oct 20 13:23:01 ws1 portsentry[11071]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 698
Oct 20 13:23:01 ws1 portsentry[11071]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 520
Oct 20 13:23:01 ws1 portsentry[11071]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 517
Oct 20 13:23:01 ws1 portsentry[11071]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 518
Oct 20 13:23:01 ws1 portsentry[11071]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 513
Oct 20 13:23:01 ws1 portsentry[11071]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 138
Oct 20 13:23:01 ws1 portsentry[11071]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 137
Oct 20 13:23:01 ws1 portsentry[11071]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 123
Oct 20 13:23:01 ws1 portsentry[11071]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 68
Oct 20 13:23:01 ws1 portsentry[11071]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 67
Oct 20 13:23:01 ws1 portsentry[11071]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 53
Oct 20 13:23:01 ws1 portsentry[11071]: adminalert: PortSentry is now active and listening.
Oct 20 13:23:01 ws1 iptables: succeeded
Oct 20 13:23:01 ws1 kernel: ip_tables: (C) 2000-2002 Netfilter core team
Oct 20 13:23:01 ws1 kernel: ip_conntrack version 2.1 (1024 buckets, 8192 max) - 296 bytes per conntrack
Oct 20 13:23:01 ws1 iptables: succeeded
Oct 20 13:43:00 ws1 CROND[11145]: (root) CMD (/sbin/service portsentry restart >/dev/null && /sbin/service iptables restart >/dev/null)
Oct 20 13:43:00 ws1 portsentry[11071]: securityalert: Psionic PortSentry is shutting down
Oct 20 13:43:00 ws1 portsentry[11071]: adminalert: Psionic PortSentry is shutting down
Oct 20 13:43:00 ws1 portsentry[11067]: securityalert: Psionic PortSentry is shutting down
Oct 20 13:43:00 ws1 portsentry[11067]: adminalert: Psionic PortSentry is shutting down
Oct 20 13:43:00 ws1 portsentry: portsentry shutdown succeeded
Oct 20 13:43:00 ws1 portsentry[11180]: adminalert: Psionic PortSentry 1.1 is starting.
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced mode will monitor first 1024 ports
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced mode will manually exclude port: 21
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced mode will manually exclude port: 22
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced mode will manually exclude port: 25
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced mode will manually exclude port: 53
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced mode will manually exclude port: 80
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced mode will manually exclude port: 110
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced mode will manually exclude port: 113
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced mode will manually exclude port: 135
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced mode will manually exclude port: 137
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced mode will manually exclude port: 138
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced mode will manually exclude port: 139
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced mode will manually exclude port: 443
Oct 20 13:43:00 ws1 portsentry: (atcp) succeeded
Oct 20 13:43:00 ws1 portsentry[11184]: adminalert: Psionic PortSentry 1.1 is starting.
Oct 20 13:43:00 ws1 portsentry: (audp) succeeded
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 22
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 25
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 80
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 111
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 443
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 631
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 21
Oct 20 13:43:00 ws1 portsentry[11185]: adminalert: Advanced mode will monitor first 1024 ports
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 22
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 25
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 53
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 80
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 110
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 113
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 135
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 520
Oct 20 13:43:01 ws1 iptables: succeeded
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 137
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 517
Oct 20 13:43:01 ws1 iptables: succeeded
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 138
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 518
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 139
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 513
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 443
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 138
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: PortSentry is now active and listening.
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 137
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 123
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 68
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 67
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 53
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 111
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 631
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 698
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 520
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 517
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 518
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 513
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 138
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 137
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 123
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 68
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 67
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 53
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: PortSentry is now active and listening.
Oct 20 13:43:01 ws1 iptables: succeeded
Oct 20 13:43:01 ws1 kernel: ip_tables: (C) 2000-2002 Netfilter core team
Oct 20 13:43:01 ws1 kernel: ip_conntrack version 2.1 (1024 buckets, 8192 max) - 296 bytes per conntrack
Oct 20 13:43:01 ws1 iptables: succeeded
[root@ws1 makedev.d]# vi /var/log/messages
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced mode will manually exclude port: 137
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced mode will manually exclude port: 138
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced mode will manually exclude port: 139
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced mode will manually exclude port: 443
Oct 20 13:43:00 ws1 portsentry: (atcp) succeeded
Oct 20 13:43:00 ws1 portsentry[11184]: adminalert: Psionic PortSentry 1.1 is starting.
Oct 20 13:43:00 ws1 portsentry: (audp) succeeded
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 22
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 25
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 80
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 111
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 443
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 631
Oct 20 13:43:00 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 21
Oct 20 13:43:00 ws1 portsentry[11185]: adminalert: Advanced mode will monitor first 1024 ports
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 22
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 25
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 53
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 80
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 110
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 113
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 135
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 520
Oct 20 13:43:01 ws1 iptables: succeeded
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 137
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 517
Oct 20 13:43:01 ws1 iptables: succeeded
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 138
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 518
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 139
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 513
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: Advanced Stealth scan detection mode activated. Ignored TCP port: 443
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 138
Oct 20 13:43:01 ws1 portsentry[11181]: adminalert: PortSentry is now active and listening.
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 137
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 123
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 68
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 67
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced mode will manually exclude port: 53
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 111
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 631
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 698
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 520
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 517
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 518
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 513
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 138
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 137
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 123
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 68
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 67
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: Advanced Stealth scan detection mode activated. Ignored UDP port: 53
Oct 20 13:43:01 ws1 portsentry[11185]: adminalert: PortSentry is now active and listening.
Oct 20 13:43:01 ws1 iptables: succeeded
Oct 20 13:43:01 ws1 kernel: ip_tables: (C) 2000-2002 Netfilter core team
Oct 20 13:43:01 ws1 kernel: ip_conntrack version 2.1 (1024 buckets, 8192 max) - 296 bytes per conntrack
Oct 20 13:43:01 ws1 iptables: succeeded
test
 
Old 10-21-2005, 07:19 PM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600
Ive installed portsentry on my fedora core 2 machine
...and there it all went wrong from the start. Uninstall it and install a proper IDS that's maintained, enhanced and supported by a huge community: Snort. Portsentry was a good tool when nothing else was around, but it had it's flaws and Psionic didn't really maintain it much this millennium. Then it was bought by Cisco, then released on Sourceforge and now the last source date is 2003. Ditch it, don't waste time.
Last edited by unSpawn; 10-21-2005 at 07:21 PM.
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
portsentry skoot Linux - Security 18 11-21-2005 06:29 AM
Sendmail, DNS, portsentry problem peppiv Linux - Software 3 02-11-2004 11:29 AM
how to change notification email for portsentry and how to test portsentry roorings Linux - Security 1 11-04-2003 10:36 AM
extreme newbie problem...Portsentry Problem ImAnEwBiE Linux - Newbie 1 08-26-2003 09:18 AM
portsentry Jase Linux - Security 1 07-24-2001 07:49 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 03:51 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration