./security/portsentry, Detects and respond to port scans against a target host in real-time

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 1.2, Package name: portsentry-1.2, Maintainer: pkgsrc-users

PortSentry is designed to detect and respond to port scans against a
target host in real-time. Some of the more useful features include:

+ Runs on TCP and UDP sockets to detect port scans against your
system. PortSentry is configurable to run on multiple sockets at the
same time so you only need to start one copy to cover dozens of
tripwired services.
+ PortSentry will react to a port scan attempt by blocking the host in
real-time. This is done through configured options of either dropping
the local route back to the attacker, using the Linux ipfwadm/ipchains
command, *BSD ipfw command, and/or dropping the attacker host IP into
a TCP Wrappers hosts.deny file automatically.
+ PortSentry has an internal state engine to remember hosts that
connected previously. This allows the setting of a trigger value to
prevent false alarms and detect "random" port probing.
+ PortSentry will report all violations to the local or remote syslog
daemons indicating the system name, time of attack, attacking host IP
and the TCP or UDP port a connection attempt was made to. When used
in conjunction with Logcheck it will provide an alert to
administrators through e-mail.
+ Once a scan is detected your system will turn into a blackhole and
disappear from the attacker. This feature stops most attacks cold.


Required to build:
[pkgtools/cwrappers]

Master sites:

Filesize: 46.928 KB

Version history: (Expand)


CVS history: (Expand)


   2021-10-26 13:18:07 by Nia Alarie | Files touched by this commit (605)
Log message:
security: Replace RMD160 checksums with BLAKE2s checksums

All checksums have been double-checked against existing RMD160 and
SHA512 hashes

Unfetchable distfiles (fetched conditionally?):
./security/cyrus-sasl/distinfo \ 
cyrus-sasl-dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40d.patch.v2
   2021-10-07 16:54:50 by Nia Alarie | Files touched by this commit (606)
Log message:
security: Remove SHA1 hashes for distfiles
   2017-08-16 22:21:18 by Thomas Klausner | Files touched by this commit (180)
Log message:
Follow some http redirects.
   2015-11-04 02:18:12 by Alistair G. Crooks | Files touched by this commit (434)
Log message:
Add SHA512 digests for distfiles for security category

Problems found locating distfiles:
	Package f-prot-antivirus6-fs-bin: missing distfile fp-NetBSD.x86.32-fs-6.2.3.tar.gz
	Package f-prot-antivirus6-ws-bin: missing distfile fp-NetBSD.x86.32-ws-6.2.3.tar.gz
	Package libidea: missing distfile libidea-0.8.2b.tar.gz
	Package openssh: missing distfile openssh-7.1p1-hpn-20150822.diff.bz2
	Package uvscan: missing distfile vlp4510e.tar.Z

Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden).  All existing
SHA1 digests retained for now as an audit trail.
   2012-10-23 20:17:02 by Aleksej Saushev | Files touched by this commit (368)
Log message:
Drop superfluous PKG_DESTDIR_SUPPORT, "user-destdir" is default these days.
   2009-06-14 20:13:41 by Joerg Sonnenberger | Files touched by this commit (154)
Log message:
Remove @dirrm entries from PLISTs
   2008-06-12 04:14:58 by Joerg Sonnenberger | Files touched by this commit (1134)
Log message:
Add DESTDIR support.
   2007-12-28 12:51:42 by OBATA Akio | Files touched by this commit (1)
Log message:
Require pre-created sbin directory.