[Dev] Re: Blocking MTD's
James Manning
dev@trilug.org
Thu, 28 Feb 2002 15:45:11 -0500
[John Beimler]
> > Is it possible to have the firewall ( iptables v1.2.1a on RH7.2 )
> > inspect the contents of each packet for signatures of MTD's?
>
> Check out snort - http://www.snort.org/
A friend of mine also went the route of dropping 80 traffic and popping
his httpd up to 8080 - being able to ignore port 80 traffic altogether's
kind of nice, but that may not be an option.
Oh, yeah, binding to a non-priv port (never needing root) is cool too.
--
James Manning <jmm@sublogic.com>
GPG Key fingerprint = B913 2FBD 14A9 CE18 B2B7 9C8E A0BF B026 EEBB F6E4