Hosting Provided By

Mailing List Archive For focus-ids@securityfocus.com Feb 2003 By Thread

Share your Honeypot and IDS experiences with the masses Jacco Tunnissen (Fri Feb 28 2003 - 23:14:46 EST)
Re: ids detect malicious encrypted data? Ivan Hernandez (Fri Feb 28 2003 - 12:54:45 EST)
Re: [Snort-sigs] new Q signature Jon (Thu Feb 27 2003 - 23:08:01 EST)
Re: 30-ish page whitepaper Konrad Rieck (Thu Feb 27 2003 - 13:37:37 EST)
30-ish page whitepaper Golomb, Gary (Wed Feb 26 2003 - 15:19:55 EST)
Re: RES: Protocol Anomaly Detection IDS - Honeypots Frank Knobbe (Fri Feb 21 2003 - 19:33:17 EST)
Re: RES: Protocol Anomaly Detection IDS - Honeypots Frank Knobbe (Sat Feb 22 2003 - 15:55:39 EST)
Re: Web server response to attacks Frank Knobbe (Fri Feb 21 2003 - 19:17:56 EST)
Re: RES: Protocol Anomaly Detection IDS - Honeypots Lance Spitzner (Sun Feb 23 2003 - 14:24:20 EST)
Using an IDS to redirect hostile traffic to a Honeypot Jack Whitsitt (jofny) (Sat Feb 22 2003 - 21:18:26 EST)
Re: Protocol Anomaly Detection IDS - Honeypots Gene Yoo (Sat Feb 22 2003 - 00:05:37 EST)
Re: RES: Protocol Anomaly Detection IDS - Honeypots Marc Benoit (Fri Feb 21 2003 - 18:30:59 EST)
RE: Protocol Anomaly Detection IDS - Honeypots pbsarnac(at)thoughtworks.com (Fri Feb 21 2003 - 17:55:54 EST)
RE: Protocol Anomaly Detection IDS - Honeypots Rob Shein (Fri Feb 21 2003 - 17:07:03 EST)
RES: Protocol Anomaly Detection IDS - Honeypots Augusto Paes de Barros (Fri Feb 21 2003 - 16:56:26 EST)
RES: Protocol Anomaly Detection IDS - Honeypots Augusto Paes de Barros (Fri Feb 21 2003 - 16:53:33 EST)
RE: Protocol Anomaly Detection IDS - Honeypots Rob Shein (Fri Feb 21 2003 - 16:54:20 EST)
RE: Protocol Anomaly Detection IDS - Honeypots Jordan K Wiens (Fri Feb 21 2003 - 16:36:26 EST)
RE: Protocol Anomaly Detection IDS - Honeypots Rob Shein (Fri Feb 21 2003 - 15:45:57 EST)
RE: Protocol Anomaly Detection IDS - Honeypots Jordan K Wiens (Fri Feb 21 2003 - 15:12:36 EST)
RE: Protocol Anomaly Detection IDS - Honeypots Rob Shein (Fri Feb 21 2003 - 14:32:40 EST)
RE: Web server response to attacks Levinson, Karl (Fri Feb 21 2003 - 13:17:57 EST)
Re: RES: Protocol Anomaly Detection IDS - Honeypots dreamwvr(at)dreamwvr.com (Fri Feb 21 2003 - 12:42:23 EST)
Re: ids detect malicious encrypted data? Christian Kreibich (Fri Feb 21 2003 - 12:29:56 EST)
RE: RES: Protocol Anomaly Detection IDS - Honeypots Augusto Paes de Barros (Fri Feb 21 2003 - 10:27:09 EST)
ids detect malicious encrypted data? Lau Ker Chea (Fri Feb 21 2003 - 04:21:04 EST)
RE: RES: Protocol Anomaly Detection IDS - Honeypots Pete Herzog (Fri Feb 21 2003 - 12:00:14 EST)
Re: RES: Protocol Anomaly Detection IDS - Honeypots Mike Shaw (Fri Feb 21 2003 - 11:54:23 EST)
Re: RES: Protocol Anomaly Detection IDS - Honeypots Lance Spitzner (Fri Feb 21 2003 - 11:36:56 EST)
RES: Protocol Anomaly Detection IDS - Honeypots Augusto Paes de Barros (Fri Feb 21 2003 - 06:17:46 EST)
Re: Protocol Anomaly Detection IDS - Honeypots dreamwvr(at)dreamwvr.com (Fri Feb 21 2003 - 01:56:56 EST)
RE: Protocol Anomaly Detection IDS - Honeypots Rob Shein (Thu Feb 20 2003 - 19:48:36 EST)
RE: Protocol Anomaly Detection IDS - Honeypots Adam Powers (Thu Feb 20 2003 - 18:28:43 EST)
Re: Web server response to attacks Michael Katz (Thu Feb 20 2003 - 16:44:54 EST)
Focus-IDS Mailing List Administration & Article Announcement Jason V. Miller (Thu Feb 20 2003 - 15:57:30 EST)
RE: WLAN IDS Citadel Consulting (Thu Feb 20 2003 - 15:46:11 EST)
RE: WLAN IDS Citadel Consulting (Thu Feb 20 2003 - 14:58:23 EST)
Re: Protocol Anomaly Detection IDS - Honeypots Bob Radvanovsky (Thu Feb 20 2003 - 14:49:00 EST)
Re: Protocol Anomaly Detection IDS - Honeypots dreamwvr(at)dreamwvr.com (Thu Feb 20 2003 - 14:38:29 EST)
Re: Protocol Anomaly Detection IDS - Honeypots Lance Spitzner (Thu Feb 20 2003 - 13:58:58 EST)
Web server response to attacks Terry Ziemniak (Thu Feb 20 2003 - 13:48:53 EST)
models of internet attacks. Sharath Malladi (Thu Feb 20 2003 - 13:30:17 EST)
Re: Protocol Anomaly Detection IDS Robert Graham (Wed Feb 19 2003 - 18:25:41 EST)
RE: slow scans? Rob Shein (Tue Feb 18 2003 - 12:02:16 EST)
Re: Protocol Anomaly Detection IDS Martin Roesch (Mon Feb 17 2003 - 22:29:48 EST)
The First Honeyd Challenge Niels Provos (Mon Feb 17 2003 - 00:26:55 EST)
Re: WLAN IDS planz (Mon Feb 17 2003 - 01:14:17 EST)
Re: slow scans? Tod Beardsley (Sun Feb 16 2003 - 13:33:23 EST)
Honeyd 0.5 release Niels Provos (Sat Feb 15 2003 - 18:06:20 EST)
IDS Deployment Metrics Cox, Michael (Fri Feb 14 2003 - 12:59:32 EST)
Re: slow scans? James Hoagland (Fri Feb 14 2003 - 12:42:35 EST)
Re: slow scans? James Hoagland (Fri Feb 14 2003 - 12:42:19 EST)
IDS Policy Manager 1.3 Final Released! Jeff Dell (Fri Feb 14 2003 - 10:19:12 EST)
Summary of the responses (4 line ad) Alfred Huger (Thu Feb 13 2003 - 16:48:43 EST)
4 line ads on posts Alfred Huger (Wed Feb 12 2003 - 19:46:08 EST)
Re: slow scans? Anton Chuvakin (Wed Feb 12 2003 - 16:38:01 EST)
Re: slow scans? Anton Chuvakin (Wed Feb 12 2003 - 15:29:51 EST)
Re: slow scans? Ron Gula (Wed Feb 12 2003 - 14:30:15 EST)
Re: slow scans? Johannes Ullrich (Wed Feb 12 2003 - 14:15:21 EST)
slow scans? Anton Chuvakin (Wed Feb 12 2003 - 13:46:41 EST)
Re: Triangulating packets Dener Martins (Wed Feb 12 2003 - 12:38:06 EST)
RE: WLAN IDS Rob Shein (Wed Feb 12 2003 - 11:10:39 EST)
Triangulating packets Rodrigo Buarque Ramos (Wed Feb 12 2003 - 08:51:41 EST)
RE: Protocol Anomaly Detection IDS Sonit Jain (Wed Feb 12 2003 - 05:10:36 EST)
RE: Active response... some thoughts. Steven Richards (Tue Feb 11 2003 - 23:30:33 EST)
Re: Traffic logs to help with IDS testing and development SCC (Tue Feb 11 2003 - 18:51:44 EST)
Traffic logs to help with IDS testing and development Brennen Reynolds (Mon Feb 10 2003 - 20:17:32 EST)
Re: Protocol Anomaly Detection IDS Frank Knobbe (Tue Feb 11 2003 - 15:17:17 EST)
RE: Active response... some thoughts. Rob Shein (Tue Feb 11 2003 - 12:06:23 EST)
Re: Protocol Anomaly Detection IDS Yaakov Yehudi (Tue Feb 11 2003 - 03:12:59 EST)
Re: Active response... some thoughts. mb_lima (Tue Feb 11 2003 - 05:06:53 EST)
Re: WLAN IDS planz (Mon Feb 10 2003 - 23:56:39 EST)
Re: Protocol Anomaly Detection IDS Martin Roesch (Mon Feb 10 2003 - 21:04:52 EST)
RE: [Snort-sigs] new Q signature Hall, Andrew (DPRS) (Mon Feb 10 2003 - 16:17:14 EST)
Re: [Snort-sigs] new Q signature Jon (Mon Feb 10 2003 - 20:02:05 EST)
Re: [Snort-sigs] new Q signature Jason (Mon Feb 10 2003 - 17:50:01 EST)
Re: [Snort-sigs] new Q signature Jon (Mon Feb 10 2003 - 16:43:08 EST)
new Q signature Jon (Mon Feb 10 2003 - 14:53:11 EST)
WLAN IDS Will Schmied (Sat Feb 08 2003 - 21:29:03 EST)
Re: Active response... some thoughts. Frank Knobbe (Sat Feb 08 2003 - 19:32:13 EST)
Re: Active response... some thoughts. SecurityFocus (Fri Feb 07 2003 - 16:30:53 EST)
RE: Protocol Anomaly Detection IDS Andrew Plato (Fri Feb 07 2003 - 21:07:54 EST)
Re: Active response... some thoughts. andre (Sat Feb 08 2003 - 16:50:21 EST)
RE: Active response... some thoughts. Rob Shein (Fri Feb 07 2003 - 15:48:44 EST)
RE: Active response... some thoughts. Ralph Los (Fri Feb 07 2003 - 00:51:35 EST)
RE: Active response... some thoughts. Ralph Los (Fri Feb 07 2003 - 00:41:22 EST)
Method to the Madness: Anomaly & Signature Redux Pete Lindstrom (Thu Feb 06 2003 - 14:05:29 EST)
Re: Protocol Anomaly Detection IDS Jordan K Wiens (Thu Feb 06 2003 - 13:23:06 EST)
RE: sniffer detection on switched based networks Angel Rivera (Thu Feb 06 2003 - 09:26:58 EST)
RE: Active response... some thoughts. Pete Herzog (Thu Feb 06 2003 - 09:54:06 EST)
RE: Protocol Anomaly Detection IDS Adam Powers (Thu Feb 06 2003 - 11:14:23 EST)
RE: Active response... some thoughts. Abe L. Getchell (Thu Feb 06 2003 - 10:55:42 EST)
Re: sniffer detection on switched based networks Brett Harris (Wed Feb 05 2003 - 20:00:23 EST)
RE: Protocol Anomaly Detection IDS Graham, Robert (ISS Atlanta) (Wed Feb 05 2003 - 19:14:25 EST)
Re: sniffer detection on switched based networks Rob McMillen (Wed Feb 05 2003 - 18:13:13 EST)
RE: Active response... some thoughts. Rob McMillen (Wed Feb 05 2003 - 18:10:23 EST)
Re: Active response... some thoughts. fr0ck9 (Wed Feb 05 2003 - 17:42:14 EST)
Network Tap Technology (was: RE: Gig TAPs) robert.d.turner(at)bt.com (Wed Feb 05 2003 - 17:17:40 EST)
Re: Active response... some thoughts. Chris Travers (Wed Feb 05 2003 - 02:16:08 EST)
sniffer detection on switched based networks Sangram (Wed Feb 05 2003 - 00:01:35 EST)
Eagle X 1.0 release Kistler Ueli (Tue Feb 04 2003 - 18:45:41 EST)
Protocol Anomaly Detection IDS Michael L. Artz (Tue Feb 04 2003 - 23:07:02 EST)
Re: Active response... some thoughts. Thomas H. Ptacek (Tue Feb 04 2003 - 12:57:42 EST)
IDScenter 1.1 rc1 released Kistler Ueli (Tue Feb 04 2003 - 18:44:17 EST)
Re: Gig TAPs Bennett Todd (Mon Feb 03 2003 - 14:46:52 EST)
Re: how to detect http tunnel? Kurt Seifried (Mon Feb 03 2003 - 20:44:31 EST)
Re: Gig TAPs Talisker (Mon Feb 03 2003 - 14:41:26 EST)
Re: Active response... some thoughts. Ali Saifullah Khan (Mon Feb 03 2003 - 14:18:15 EST)
RE: Active response... some thoughts. Gonzalez, Albert (Mon Feb 03 2003 - 13:50:41 EST)
RE: snort-inline inbound ruleset? Gonzalez, Albert (Mon Feb 03 2003 - 13:38:17 EST)
RE: Gig TAPs Peter Schawacker (Mon Feb 03 2003 - 13:13:59 EST)
RE: Gig TAPs Bawcom, Aaron (Mon Feb 03 2003 - 13:07:36 EST)
Re: snort-inline inbound ruleset? Lance Spitzner (Mon Feb 03 2003 - 12:41:37 EST)
Re: Active response... some thoughts. Scott Wimer (Mon Feb 03 2003 - 12:16:45 EST)
Re: Costs of a compromise related to the detection time Scott Wimer (Mon Feb 03 2003 - 12:08:35 EST)
RE: Did IDSes detect the SQL worm? Terence Runge (Mon Feb 03 2003 - 11:25:04 EST)
snort-inline inbound ruleset? John Flynn (Sun Feb 02 2003 - 13:09:20 EST)
how to detect http tunnel? bobr(at)guru.virtual.sk (Mon Feb 03 2003 - 08:43:00 EST)
Costs of a compromise related to the detection time Konrad Rieck (Mon Feb 03 2003 - 09:35:17 EST)

119 messages sort by: [ author ] [ date ] [ subject ] [ attachment ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:01:18 EDT