[Gllug] Iplog

[Darren Evans]

> Darren wrote:-
> >Does anyone use iplog?  Looks like a good program for
> >improving knowledge of scans, however i can't get it to print
> >output to screen or disk when detecting any scans.  This is
> >on Redhat 7.1. and iplog-2.2.3-fr1.
> 
> I am using iplog on Redhat with kernel 2.2.19 with no problems.
> I am about to port it to Redhat 7.1 - will let you know if it works in due
> course.
> 
> The iplog I am using is version 2.2.1 which is older.
> I am guessing that iplog has to be 'in step' somehow with the kernel in use;
> this may be the problem, I don't know.  If you are using a redhat installed
> RPMS version then it ought to work.  Another thing maybe worth looking at is
> whether your kernel is running ipchains in 'compatibility' mode, or iptables.
> 
> Meantime, the following is my iplog config on the 2.2.19 kernel, if it
> helps at all:-

Thanks for the config, this leads me to believe there are 2.4 kernel
issues with iplog-2.2.3-fr1.  Coincidentally i also tried running
it as root and commenting out the broken libpcap thread as documented
at http://ojnk.sourceforge.net/stuff/iplog.readme at line 41 of iplog.c

It's email author time.

Darren

-- 
Gllug mailing list  -  Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug