| Paketname | psad |
| Beschreibung | Port Scan Attack Detector |
| Archiv/Repository | Offizielles Debian Archiv squeeze (main) |
| Version | 2.1.7-1 |
| Sektion | admin |
| Priorität | optional |
| Installierte Größe | 768 Byte |
| Hängt ab von | libc6 (>= 2.3), perl, libunix-syslog-perl, iptables, rsyslog | system-log-daemon, libnetwork-ipv4add |
| Empfohlene Pakete | |
| Paketbetreuer | Franck Joncourt |
| Quelle | |
| Paketgröße | 188196 Byte |
| Prüfsumme MD5 | cc4e2a5e863ea58a3d0450e52932c2a4 |
| Prüfsumme SHA1 | e0459f38b438feed62f7006acfc5f760e03ff422 |
| Prüfsumme SHA256 | 780510fae2816a648284b3373ec1026fc3f333ed092f5408dd873a3e1793d81b |
| Link zum Herunterladen | psad_2.1.7-1_i386.deb |
| Ausführliche Beschreibung | PSAD is a collection of four lightweight system daemons (in Perl and
C) designed to work with iptables to detect port scans. It features:
* a set of highly configurable danger thresholds (with sensible
defaults provided);
* verbose alert messages that include the source, destination,
scanned port range, beginning and end times, TCP flags, and
corresponding Nmap options;
* reverse DNS information;
* alerts via email;
* automatic blocking of offending IP addresses via dynamic firewall
configuration.
.
When combined with fwsnort and the iptables string match extension,
PSAD is capable of detecting many attacks described in the Snort rule
set that involve application layer data.
|