IDS options?

David While David.While at UCE.AC.UK
Fri Mar 11 09:39:30 GMT 2005


Vispan can do this - it can be configured to block at the iptables level
for a configurable time. 

See http://www.while.homeunix.net/mailstats/

--------------------------------------------
David While BSc CEng MBCS CITP
Department of Computing & Information
University of Central England
Tel: 0121 331 6211
-------------------------------------------- 

-----Original Message-----
From: MailScanner mailing list [mailto:MAILSCANNER at JISCMAIL.AC.UK] On
Behalf Of Matt Kettler
Sent: 10 March 2005 21:35
To: MAILSCANNER at JISCMAIL.AC.UK
Subject: Re: IDS options?

At 04:23 PM 3/10/2005, Matt Kettler wrote:
>You might even be able to do something
>useful with the limit module for IPTables, but you might need to get a
bit
>fancy with it as it's not obvious how to do this with limit.

Additional info:

The newest versions of IPTables (>1.2.8) support the connlimit module,
which does this on a per-rule basis. However, it's not in the mainline
kernel yet, only in the patch-o-matic at netfilter.org.

------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and
the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html).

Support MailScanner development - buy the book off the website!

------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and
the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html).

Support MailScanner development - buy the book off the website!




More information about the MailScanner mailing list