Comments on PSAD installation and configuration on Debian 8 (Jessie)

In this tutorial, I will show you the installation and configuration of the PSAD (Port Scan Attack Detection) tool on Debian 8 (Jessie). PSAD provides intrusion detection and log-analysis with IPtables (Linux firewall).

2 Comment(s)

Add comment

Please register in our forum first to comment.

Comments

By: Ronen

Thanks for the how-to ! I see that PSAD is constantly emailing about scans from 192.168.1.1 (router) and 127.0.0.0 (loopback ?) can I whitelist them ? my inbox is filling up with those emails.

By: Odranoel

@Ronen look here:http://serverfault.com/questions/611865/allow-port-scans-for-specific-addresses-in-psad