[PLUG] psad
Keith Nasman
keith at ahapala.net
Wed Mar 3 10:21:01 UTC 2004
Just came across psad (http://www.cipherdyne.org/).
"psad is a collection of three lightweight system daemons (two main
daemons and one helper daemon) that run on Linux machines and analyze
iptables log messages to detect port scans and other suspicious
traffic."
Anyone using this actively? Opinions? Problems? Elations? Gotchas?
How does it fit into your security toolbag?
Thanks,
Keith
More information about the PLUG
mailing list