Re: Linux network monitoring (fwd)

Mustafa Akgul (akgul@Bilkent.EDU.TR)
Sun, 5 May 1996 12:51:22 +0400 (EET DST)

Forwarded message:
>From firewalls-owner@GreatCircle.COM Sun May 5 05:17:11 1996
Date: Sat, 4 May 1996 20:58:10 -0500 (CDT)
From: Doug Hughes <Doug.Hughes@Eng.Auburn.EDU>
Message-Id: <199605050158.UAA15878@dns.eng.auburn.edu>
To: firewalls@GreatCircle.COM, zarquon@popalex1.linknet.net
Subject: Re: Linux network monitoring
Sender: firewalls-owner@GreatCircle.COM
Precedence: bulk

I wrote a tool that does what you want (an inetd service that you put
in place of any UDP or TCP based service that logs the attempt but
does not accept the connection). It's called klaxon and is available
at either ftp.eng.auburn.edu:pub/doug or http://www.eng.auburn.edu/users/
doug/second.html.

There's another tool on the www page that I use to watch the logs and
inform me when critical security or other system events occur. It's
called tklogger.

Doug Hughes Engineering Network Services
doug@eng.auburn.edu Auburn University