IP chains + redhat 2.4.9-31smp

Rolf Hanson rolf at gitdown.com
Mon Apr 22 18:26:01 CDT 2002


Thanks!
I ported my script and successfully denied the Code Red worms. I'm being 
attacked by 7 unique IPs in not even 7 days...

Rolf

On Monday, April 22, 2002, at 06:33 PM, Chris Chabot wrote:

> How about using iptables and not ipchains? ;-) (iptables replaced 
> ipchains during the linux kernel 2.2 -> 2.4 switchover)
>
> you will find that the iptables syntax is almost identical to ipchains, 
> so porting your script should be easy enough.
>
> G'luck,
>
> 	-- Chris
>
> Rolf Hanson wrote:
>> Hi,
>> I just put a poweredge 1650 running redhat 2.4.9-31smp onto the net, 
>> and already my apache is being hammered by a Code Red worm.
>> I have a shell script that greps my httpd error log and adds an 
>> ipchains rule to block the offending IP. However I just tested 
>> ipchains and get:
>> [hortence at sv1 hortence]$ sudo /sbin/ipchains -nL
>> ipchains: Incompatible with this kernel
>> Before I look too much into this, is there a quick and easy way to get 
>> a version of ipchains that works?  rpm -v tells me that I've got 
>> ipchains-1.3.10-10
>> Thanks!
>> Rolf Hanson
>> _______________________________________________
>> Linux-PowerEdge mailing list
>> Linux-PowerEdge at dell.com
>> http://lists.us.dell.com/mailman/listinfo/linux-poweredge
>> Please read the FAQ at http://lists.us.dell.com/faq or search the list 
>> archives at http://lists.us.dell.com/htdig/
>
>
>
>




More information about the Linux-PowerEdge mailing list