Another thing I need to do is create a better system for managing my firewall.
Right now, because I got tired of nimda victims filling up my logs, I have a script which will block them and append to the firewall rules. This makes things quite messy, however, if I need to update my rules. I’m using iptables-save and restore, but I need a better solution. Perhaps a script which will suck in the nimda victims plus one that will purge them after a given period. It’s a good thing I’ve got a couple weeks before my new job starts.
I will, of course, post anything useful I get on here.