chaostables 0.2

To:	Netfilter Mailing List <netfilter@lists.netfilter.org>
Subject:	chaostables 0.2
From:	Jan Engelhardt <jengelh@linux01.gwdg.de>
Date:	Mon, 1 Jan 2007 03:00:22 +0100 (MET)
Cc:	Linux Kernel Mailing List <linux-kernel@vger.kernel.org>
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	netfilter-list1@securepoint.com
List-archive:	</pipermail/netfilter>
List-help:	<mailto:netfilter-request@lists.netfilter.org?subject=help>
List-id:	General discussion and user questions <netfilter.lists.netfilter.org>
List-post:	<mailto:netfilter@lists.netfilter.org>
List-subscribe:	<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-unsubscribe:	<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
Sender:	netfilter-bounces@lists.netfilter.org

To:

Netfilter Mailing List <netfilter@lists.netfilter.org>

Subject:

chaostables 0.2

From:

Jan Engelhardt <jengelh@linux01.gwdg.de>

Date:

Mon, 1 Jan 2007 03:00:22 +0100 (MET)

Cc:

Linux Kernel Mailing List <linux-kernel@vger.kernel.org>

Delivered-to:

sp-com-lists@consult.net

Delivered-to:

netfilter-list1@securepoint.com

List-archive:

</pipermail/netfilter>

List-help:

<mailto:netfilter-request@lists.netfilter.org?subject=help>

List-id:

General discussion and user questions <netfilter.lists.netfilter.org>

List-post:

<mailto:netfilter@lists.netfilter.org>

List-subscribe:

<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe>

List-unsubscribe:

<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>

Sender:

netfilter-bounces@lists.netfilter.org

Hi list(s),



chaostables is a small package containing some nice netfilter magic:
a module xt_portscan which matches the nmap scan types (including -sS) 
and more, and a xt_CHAOS module which slows down network scanners by 
triggering their codepaths for handling slow-working/'broken' operating 
systems.

Documentation is not yet fully complete, but it explains the details 
behind the portscan match and how it can be implemented without using 
the xt_portscan.ko module. By looking at the code and some example 
files, it should be possible to figure out how to use these (obviously, 
-m portscan [types] and -j CHAOS -- but a little self-experimenting is 
always good, too.)

http://jengelh.hopto.org/f/chaostables/chaostables-0.2.tar.bz2
(it is a remake of what was previously known, and now inaccessible, as 
AS_IPFW)

I happily take comments on anything.

Thanks and, FWIW, happy  new Year(),
Jan
--

<Prev in Thread]	Current Thread	[Next in Thread>
chaostables 0.2, Jan Engelhardt <=

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	Re: Distro Choice for iptables as Enterprise Firewall, Jan Engelhardt
Next by Date:	Re: Distro Choice for iptables as Enterprise Firewall, Shannon Roddy
Previous by Thread:	Distro Choice for iptables as Enterprise Firewall, Rackage \| Randles
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

Re: Distro Choice for iptables as Enterprise Firewall, Jan Engelhardt

Next by Date:

Re: Distro Choice for iptables as Enterprise Firewall, Shannon Roddy

Previous by Thread:

Distro Choice for iptables as Enterprise Firewall, Rackage | Randles

Indexes:

[Date] [Thread] [Top] [All Lists]