netbsd-users: portsentry won't work in stealth mode

Subject: portsentry won't work in stealth mode
To: None <netbsd-users@netbsd.org>
From: rgf <rgfisch@excite.com>
List: netbsd-users
Date: 03/04/2004 13:56:18

Is anybody using portsentry from pkgsrc?
I built and loaded from the most recent version.

It starts up fine in standard mode where it binds to a whole bunch of ports,
(-tcp, -udp), but if I try it in stealth mode where it doesn't bind and hold
the ports open (-stcp, -sudp), then it shuts immediately after startup.

Thanks,
  - rog
Mar  1 23:30:00 bsdbox portsentry[19508]: adminalert: PortSentry 1.2 is starting.
Mar  1 23:30:00 bsdbox portsentry[19509]: securityalert: PortSentry is shutting down
Mar  1 23:30:00 bsdbox portsentry[19509]: adminalert: PortSentry is shutting down

Mar  1 23:30:12 bsdbox portsentry[19510]: adminalert: PortSentry 1.2 is starting.
Mar  1 23:30:12 bsdbox portsentry[19511]: securityalert: PortSentry is shutting down
Mar  1 23:30:12 bsdbox portsentry[19511]: adminalert: PortSentry is shutting down



P.S.
Is portsentry really doing anything useful anyway if all the ports are blocked by ipfilter already?

_______________________________________________
Join Excite! - http://www.excite.com
The most personalized portal on the Web!