[logs] os fingerprinting and smurf attack signatures in logs

From: Sujit (skproject23@private)
Date: Tue Mar 01 2005 - 09:51:47 PST


can anyone please suggest what to look out for in the /var/log/messages of RH9 for a trace of OS fingerprinting done with nmap -O option. 
the iptables -t filter -I INPUT -j LOG has been enabled to log each packet. 

similarly, can anyone please suggest the attack signature for a smurf attack in the system logs of RH9?

thank you in advance,


LogAnalysis mailing list

This archive was generated by hypermail 2.1.3 : Tue Mar 01 2005 - 13:11:24 PST