im not unning any servers, but i do have open ports.. is snort usefull ?
Hey guys.
i dont run any servers (except for the occasional ftp just to transfere a file or two to friends , but this is rare)
but i do have some open ports,
1214 for p2p-Fasttrack on giFT.
6000 for remote X login, but i use iptables to block all connections except for a trusted Ip addess (from my unix machine at university)
8661 - 8660 for bit torrent.
would installing and configureing snort be any use to me ?
im aware its possible for remote people to do things like buffer overlow exploits on programs listening on these ports.
ive been reading the snort default config file, and there are rules for portecting http servers, but nothing for less used p2p / X / bit torrent applications
any comments ?
|