Hosting Provided By

Re: [Snort-users] $HOME_NET

From: Keg <snrtlst(at)netscape.net>
Date: Tue Apr 08 2003 - 14:01:26 EDT

Erek,
As to what traffic I expect to see...I'm sure nessus does some IIS vuln testing and I'm sure snort has rules for it. I think nessus is not smart enough to first figure out what OS of the host is and after that launch only OS-related tests, I think it just takes 1000 vuln scrupts and launch it against whatever host. Having said that, I expect to see at least some IIS alerts reprted, which are misteriously not reported as I mentioned earlier.
As to the going into details...thanks, I think I'll try to dig what's wrong with the setup myself. Thank you very much.

Erek Adams wrote:

>On Tue, 8 Apr 2003, Keg wrote:

-- 
Your favorite stores, helpful shopping tools and great gift ideas. 
Experience the convenience of buying online with Shop@Netscape! 
http://shopnow.netscape.com/




-------------------------------------------------------
This SF.net email is sponsored by: ValueWeb: 
Dedicated Hosting for just $79/mo with 500 GB of bandwidth! 
No other company gives more support or power for your dedicated server
http://click.atdmt.com/AFF/go/sdnxxaff00300020aff/direct/01/
_______________________________________________
Snort-users mailing list
Snort-users@lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Received on Tue Apr 8 14:32:51 2003

This message: [ Message body ]
Next message: Erick Mechler: "Re: [Snort-users] certificate verify error"
Previous message: Slighter, Tim: "[Snort-users] Snort behavior"
In reply to Erek Adams: "Re: [Snort-users] $HOME_NET"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 11:51:01 EDT