using portsentry to run zenmap against attacker on detected portscan
I'm trying to configure port sentry so that one someone port scans me. It runs zenmap and runs a scan against them.so far I have made these changes to the config file.
set it to run a command when it detects a scan.
and set the command to run zenmap
# 0 = Do not block UDP/TCP scans.
# 1 = Block UDP/TCP scans.
# 2 = Run external command only (KILL_RUN_CMD)
but when I scan the computer with port sentry on it from another computer nothing happens.
KILL_RUN_CMD="sudo zenmap -p intense_scan,_no_ping -t $TARGET$"
btw I'm running ubuntu 11.04 if that helps any.