|
|
Arachnids IDS181 and interesting false positive: msg#00166security.ids.snort.sigs
Hey all! Real quick....just wanting to know what: http://www.slave-tothe-box.net/public/acidids181.html is....I see it come up on port 1025 as well as 135. I'm guessing it's some expoit of some sort, but not sure which one. The false positive stems from IDS181 rule looking at the bevy of 90 90 90 90 and seeing them as NOP's. Thanks! James Lay Network Manager/Security Officer AmeriBen Solutions/IEC Group Deo Gloria!!! ------------------------------------------------------- This SF.net email is sponsored by: IT Product Guide on ITManagersJournal Use IT products in your business? Tell us what you think of them. Give us Your Opinions, Get Free ThinkGeek Gift Certificates! Click to find out more http://productguide.itmanagersjournal.com/guidepromo.tmpl |
|
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| Previous by Date: | Re: Rules utilisation: 00166, Matt Jonkman |
|---|---|
| Next by Date: | Re: Rules utilisation: 00166, Jason |
| Previous by Thread: | Rules utilisationi: 00166, Chich Thierry |
| Next by Thread: | David Kibilka/Networking/Willich/Datasystems ist außer Haus.: 00166, dkibilka |
| Indexes: | [Date] [Thread] [Top] [All Lists] |
| News | FAQ | advertise |