scanlogd
scanlogd is a system daemon which attempts to log all portscans of a host to the syslog, in a secure fashion.
| Tags | Security Logging Networking Monitoring Systems Administration |
|---|---|
| Licenses | BSD Original BSD Revised |
| Operating Systems | Windows Windows Windows Windows POSIX AIX BSD BSD/OS FreeBSD NetBSD OpenBSD HP-UX IRIX Linux SCO Solaris |
| Implementation | C |
Recent releases
- 11 Mar 2006 06:10
Changes: The source code has been modified to use sysconf(_SC_CLK_TCK) instead of CLK_TCK when _SC_CLK_TCK is known to be available or CLK_TCK is not (needed for glibc 2.3.90+).
- 03 Jul 2004 18:28
Changes: This release drops cleanup() because it was not async-signal-safe.
- 02 Jun 2004 18:45
Changes: scanlogd will now chroot to /var/empty to further reduce the impact of potential bugs in scanlogd itself and in the libraries that it uses. When built with libnids or direct libpcap support, a smart pcap filter expression is now used to hopefully filter out most uninteresting packets while in the kernel. Many minor code cleanups and other enhancements have been made, and RPM spec file and startup script for Red Hat Linux and compatible distributions are now included.
- 30 Jan 2001 06:13
Changes: This release improves support for libnids 1.14+.
