On Thu, 29 Dec 2005 01:15:30 +0800 John Summerfied <debian@xxxxxxxxxxxxxxxxxxxxxx> opined: > > Reread what I did say. A firewall does not prevent attacks against > services that must be open to the public, for example, because they > provide a public service. Neither does your firewall protect against > content you invite through it such as stuff from my website. > > If you want to run an ftp server for people do download stuff, then > people have to be able to access it. If you don't need to operate an ftp > server, then don't install it and nobody can attack it, firewall or no. > Well put. I'm not a big fan of snort but (IMO) everyone should run snort for a week or so to get a sense of what miscreants are trying to do. -- Our DNSRBL - Eliminate Spam: http://www.TQMcube.com/spam_trap.php FSS v. AHBL SLAPP Suit: http://www.TQMcube.com/ahbl.php Multi-RBL Check: http://www.TQMcube.com/rblcheck.php Zombie Graphs: http://www.TQMcube.com/zombies.php