This is an old revision of the document!
!!! Отключить самописный веб сервер !!!
http://www.lissyara.su/articles/freebsd/security/portsentry/
server# apt install portsentry server# cd /etc/portsentry/
server# pkg install portsentry server# cd /usr/local/etc/ server# cp portsentry.conf.default portsentry.conf server# cp portsentry.ignore.default portsentry.ignore
server# cat portsentry.conf
... BLOCK_UDP="0" BLOCK_TCP="0" ...
server# tail -f /var/log/syslog или server# tail -f /var/log/messages
Конфигурация в режиме "все разрешено, кроме"
server# :> /etc/hosts.deny server# cat portsentry.conf
... BLOCK_UDP="1" BLOCK_TCP="1" ... KILL_HOSTS_DENY="ALL: $TARGET$" ...
Управление таблицей маршрутизации
server# cat portsentry.conf
... KILL_ROUTE=... ...
/sbin/route del -host 192.168.N.M reject
server# cat /var/lib/portsentry/portsentry.blocked.* или server# cat /usr/local/etc/portsentry.blocked.*