[ANNOUNCE] protocol watcher

• Previous message: Justin Pryzby: "Re: Scans from proxyprotector.com"
• Next in thread: Jerry Shenk: "RE: [ANNOUNCE] protocol watcher"
• Reply: Jerry Shenk: "RE: [ANNOUNCE] protocol watcher"
• Maybe reply: Justin Pryzby: "Re: [ANNOUNCE] protocol watcher"
• Reply: Anders Reed Mohn: "Re: [ANNOUNCE] protocol watcher"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 21 May 2003 17:00:21 -0400
To: incidents@securityfocus.com

I emailed the list previously asking if anyone knew of a way to
automatically accept and log all connections to a computer. My thanks
to all that replied; unfortunately, I was unable to find exactly what I
wanted. Since then, it occurred to me that this piece of software would
not be hard to write, so, three attempts later, it is written.

``Protowatch'' may be now be found on sourceforge:
[http://www.sf.net/projects/protowatch/]. It will work only for Linux
2.4/2.5, as it requires the iptables QUEUE target to dynamically run a
server (in userspace) for each unhandled packet.

It has not been well tested, but is a trivial piece of code. I will be
in a better position to test it in two weeks; atm I am behind a home
router.

Questions, comments and flames are welcome.

Justin Pryzby

----------------------------------------------------------------------------
*** Wireless LAN Policies for Security & Management - NEW White Paper ***
Just like wired networks, wireless LANs require network security policies
that are enforced to protect WLANs from known vulnerabilities and threats.
Learn to design, implement and enforce WLAN security policies to lockdown enterprise WLANs.

To get your FREE white paper visit us at:
http://www.securityfocus.com/AirDefense-incidents
----------------------------------------------------------------------------

• Previous message: Justin Pryzby: "Re: Scans from proxyprotector.com"
• Next in thread: Jerry Shenk: "RE: [ANNOUNCE] protocol watcher"
• Reply: Jerry Shenk: "RE: [ANNOUNCE] protocol watcher"
• Maybe reply: Justin Pryzby: "Re: [ANNOUNCE] protocol watcher"
• Reply: Anders Reed Mohn: "Re: [ANNOUNCE] protocol watcher"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages RE: [ANNOUNCE] protocol watcher ... wireless LANs require network security policies ... that are enforced to protect WLANs from known vulnerabilities and threats. ... implement and enforce WLAN security policies to lockdown enterprise WLANs. ... (Incidents) RE: Possible Intrusion Attempt? ... wireless LANs require network security policies ... implement and enforce WLAN security policies to lockdown enterprise WLANs. ... (Incidents) Re: DDoS Attack ... wireless LANs require network security policies ... >> that are enforced to protect WLANs from known vulnerabilities and threats. ... implement and enforce WLAN security policies to lockdown enterprise WLANs. ... (Incidents) RE: Cain a& Abel Question ... wireless LANs require network security policies ... implement and enforce WLAN security policies to lockdown enterprise WLANs. ... (Pen-Test) Re: Scans from proxyprotector.com ... wireless LANs require network security policies ... implement and enforce WLAN security policies to lockdown enterprise WLANs. ... (Incidents)