FTP Port Scans/ Buffer Overflow Attacks/Port Bounce

[SpaceC0wb0y]

I am running the G6 ftp server on my machine to serve up mp3 files. I have put up zoneAlarm & BlackIce Defender and am shocked to see the number of things going on. I have had buffer overflow attacks, port scans, and port bounces just to name a few. I know that these have been attempted but how do I know if any of them have worked. zoneAlarm works good to block open ports but if i open up port 21 for others, how do i regulate it? Does anyone know how secure G6 v2.00 is? Does anyone have any other advice for security? I am open to suggestions and any information that people can serve up.

Space Cowboy

 

[Russ]

<< but how do I know if any of them have worked >>



Check you log files. If those big long nasty malformed URLs have a "200" at the end, they're in.

Russ, NCNE

 

[n0cmonkey]

Make sure you keep up to date on all patches. keep an eye on bugtraq (securityfocus.com), check out packetstormsecurity.com (BEST security site ever), dont allow anyone to have access to anything they shouldnt, dont run ftp as root, chroot it if possible, keep default permissions 666 or less, etc. hope that gives you a start

 

[spidey07]

welcome to the world of the internet.