snort-users October 2011 archive
Main Archive Page > Month Archives  > snort-users archives
snort-users: By Thread

snort-users By Thread

SubjectAuthor Date
[Snort-users] Ubuntu 11.04 / 10 rulessetMarcin Nawrocki31 Oct 2011
Re: [Snort-users] Ubuntu 11.04 / 10 rulessetMike Lococo31 Oct 2011
--> Re: [Snort-users] Ubuntu 11.04 / 10 rulessetJoel Esler31 Oct 2011
--> Re: [Snort-users] Ubuntu 11.04 / 10 rulessetNick Moore31 Oct 2011
--> Re: [Snort-users] Ubuntu 11.04 / 10 rulessetMike Lococo31 Oct 2011
--> Re: [Snort-users] Ubuntu 11.04 / 10 rulessetJoel Esler31 Oct 2011
[Snort-users] Create error "daq_nfq.la" on debian6/ubuntu11.10 64bitPascal Holthaus29 Oct 2011
Re: [Snort-users] Create error "daq_nfq.la" on debian6/ubuntu11.10 64bitMartin Holste30 Oct 2011
--> Re: [Snort-users] Create error "daq_nfq.la" on debian6/ubuntu11.10 64bitRuss Combs31 Oct 2011
[Snort-users] Host attribute table validation / usageEnrico Papi29 Oct 2011
Re: [Snort-users] Host attribute table validation / usageJoel Esler31 Oct 2011
[Snort-users] Snort 2.9.2 Beta Now AvailableSnort Releases28 Oct 2011
[Snort-users] 2.9.1.2 rebuild problemsJohn York26 Oct 2011
Re: [Snort-users] [Snort-Users] BAD-TRAFFIC small or zero-sized tcp windowKevin Ross26 Oct 2011
Re: [Snort-users] [Snort-Users] BAD-TRAFFIC small or zero-sized tcp windowKevin Ross26 Oct 2011
[Snort-users] (no subject)cnuddep_at_nospam25 Oct 2011
[Snort-users] Snort 2.9.1.2 unknown preprocessorDocument Retention25 Oct 2011
Re: [Snort-users] Snort 2.9.1.2 unknown preprocessorJoel Esler25 Oct 2011
[Snort-users] Fine tuning portscanLay, James25 Oct 2011
Re: [Snort-users] Fine tuning portscanJoel Esler25 Oct 2011
Re: [Snort-users] Fine tuning portscanJJC25 Oct 2011
--> Re: [Snort-users] Fine tuning portscanLay, James25 Oct 2011
[Snort-users] sid:19559 BAD-TRAFFIC SSH brute force login attempt False PositiveThibaut PIRONNEAU25 Oct 2011
Re: [Snort-users] sid:19559 BAD-TRAFFIC SSH brute force login attempt False PositiveAlex Kirk25 Oct 2011
[Snort-users] snort 2.9.1.2 uild 84 packages for RHEL5.x and RHEL6.xvincent_at_nospam24 Oct 2011
Re: [Snort-users] HIJoel Esler23 Oct 2011
Re: [Snort-users] SERVER ADDRESSESJoel Esler23 Oct 2011
[Snort-users] file_data pointerEoin Miller21 Oct 2011
Re: [Snort-users] file_data pointerJoel Esler21 Oct 2011
[Snort-users] SID 17458 matching EICAR rather than intended vuln.Jeff Jarmoc21 Oct 2011
Re: [Snort-users] SID 17458 matching EICAR rather than intended vuln.Joel Esler21 Oct 2011
[Snort-users] snortsam on 2.9.1?Jeff Kell20 Oct 2011
Re: [Snort-users] snortsam on 2.9.1?Luis Daniel Lucio Quiroz20 Oct 2011
Re: [Snort-users] Compact Snort ConfigurationJoel Esler20 Oct 2011
[Snort-users] Rules not hit on 2.9.1.1 sensorPeter Bates20 Oct 2011
Re: [Snort-users] Rules not hit on 2.9.1.1 sensorPeter Bates20 Oct 2011
--> Re: [Snort-users] Rules not hit on 2.9.1.1 sensorMartin Holste20 Oct 2011
--> Re: [Snort-users] Rules not hit on 2.9.1.1 sensorPeter Bates20 Oct 2011
--> Re: [Snort-users] Rules not hit on 2.9.1.1 sensorMartin Holste20 Oct 2011
--> Re: [Snort-users] Rules not hit on 2.9.1.1 sensorPeter Bates20 Oct 2011
--> Re: [Snort-users] Rules not hit on 2.9.1.1 sensorJoel Esler20 Oct 2011
--> Re: [Snort-users] Rules not hit on 2.9.1.1 sensorMartin Holste20 Oct 2011
--> Re: [Snort-users] Rules not hit on 2.9.1.1 sensorPeter Bates21 Oct 2011
[Snort-users] [HITB-Announce] HITB Magazine Issue #7HITB Magazine19 Oct 2011
[Snort-users] Weird double logging problemPeter Bates19 Oct 2011
Re: [Snort-users] Weird double logging problemJason Wallace19 Oct 2011
--> Re: [Snort-users] Weird double logging problemPeter Bates19 Oct 2011
--> Re: [Snort-users] Weird double logging problemPeter Bates19 Oct 2011
--> Re: [Snort-users] Weird double logging problemJoel Esler19 Oct 2011
[Snort-users] Snort 2.9.1.1 sfportscan syntax changed?Cees19 Oct 2011
Re: [Snort-users] Snort 2.9.1.1 sfportscan syntax changed?Joel Esler19 Oct 2011
--> Re: [Snort-users] Snort 2.9.1.1 sfportscan syntax changed?Cees20 Oct 2011
[Snort-users] missing pcaps for alertsJohn Ives18 Oct 2011
Re: [Snort-users] missing pcaps for alertsJoel Esler19 Oct 2011
--> Re: [Snort-users] missing pcaps for alertsJohn Ives19 Oct 2011
--> Re: [Snort-users] missing pcaps for alertsJoel Esler19 Oct 2011
--> Re: [Snort-users] missing pcaps for alertsJohn Ives19 Oct 2011
Re: [Snort-users] missing pcaps for alertsEoin Miller20 Oct 2011
--> Re: [Snort-users] missing pcaps for alertsJoel Esler20 Oct 2011
--> Re: [Snort-users] missing pcaps for alertsJohn Ives25 Oct 2011
--> Re: [Snort-users] missing pcaps for alertsJoel Esler25 Oct 2011
[Snort-users] High PatMatcheltra1n18 Oct 2011
Re: [Snort-users] High PatMatchJoel Esler19 Oct 2011
Re: [Snort-users] High PatMatchrmkml19 Oct 2011
[Snort-users] afpacket with three interfacescarlopmart18 Oct 2011
Re: [Snort-users] afpacket with three interfacesMichael Altizer18 Oct 2011
--> Re: [Snort-users] afpacket with three interfacesJason Haar19 Oct 2011
--> Re: [Snort-users] afpacket with three interfacescarlopmart19 Oct 2011
[Snort-users] Base not reporting "Portscan Traffic"Mike Boeckeler17 Oct 2011
Re: [Snort-users] Base not reporting "Portscan Traffic"Mike Boeckeler20 Oct 2011
[Snort-users] EOL Policy Out of DateMike Lococo11 Oct 2011
Re: [Snort-users] EOL Policy Out of DateJoel Esler14 Oct 2011
--> Re: [Snort-users] EOL Policy Out of DateMike Lococo14 Oct 2011
[Snort-users] Need to find running snort rule versionccie 686213 Oct 2011
Re: [Snort-users] Need to find running snort rule versionNigel Houghton13 Oct 2011
--> Re: [Snort-users] Need to find running snort rule versionJames Lay13 Oct 2011
[Snort-users] Negated IP RangesBrandon Phelps13 Oct 2011
Re: [Snort-users] Negated IP RangesJoel Esler14 Oct 2011
[Snort-users] Snortreport remote command execution vulnLay, James13 Oct 2011
[Snort-users] Faulting application snort.exeeltra1n13 Oct 2011
[Snort-users] snort 2.9.1.1 Build 83 packages for RHEL5.x and RHEL6.xvincent_at_nospam13 Oct 2011
[Snort-users] Snort Rule Format Examplemotahareh dehghan chachkamy12 Oct 2011
Re: [Snort-users] Snort Rule Format ExampleJoel Esler13 Oct 2011
--> Re: [Snort-users] Snort Rule Format ExampleJJ Cummings13 Oct 2011
--> Re: [Snort-users] Snort Rule Format ExampleMartin Holste13 Oct 2011
--> Re: [Snort-users] Snort Rule Format ExampleJoel Esler13 Oct 2011
[Snort-users] Running snort 2.9.1.1 on a host with low memorycarlopmart12 Oct 2011
[Snort-users] Is it dangerous to tweak http_inspect defaultsMike Lococo12 Oct 2011
Re: [Snort-users] Is it dangerous to tweak http_inspect defaultsJoel Esler12 Oct 2011
--> Re: [Snort-users] Is it dangerous to tweak http_inspect defaultsMike Lococo12 Oct 2011
--> Re: [Snort-users] Is it dangerous to tweak http_inspect defaultsJoel Esler12 Oct 2011
Re: [Snort-users] [Snort-Users] help me about snortsp 3.0.b3Kevin Ross12 Oct 2011
Re: [Snort-users] [Snort-Users] help me about snortsp 3.0.b3Joel Esler12 Oct 2011
[Snort-users] noise on new http_inspect 120:8John York11 Oct 2011
Re: [Snort-users] noise on new http_inspect 120:8Joel Esler11 Oct 2011
[Snort-users] A bunch of FP's with Skype? (ET rules)NA10 Oct 2011
Re: [Snort-users] A bunch of FP's with Skype? (ET rules)Jeff Kell10 Oct 2011
--> Re: [Snort-users] A bunch of FP's with Skype? (ET rules)Matthew Jonkman11 Oct 2011
[Snort-users] clarification between barnyard2 and snortMLP SCADA07 Oct 2011
Re: [Snort-users] clarification between barnyard2 and snortJoel Esler09 Oct 2011
[Snort-users] Snort.conf issuesQinwen Hu08 Oct 2011
Re: [Snort-users] Snort.conf issuesRuss Combs08 Oct 2011
Re: [Snort-users] Problem with using 2 sensorsMike Boeckeler08 Oct 2011
Re: [Snort-users] Problem with using 2 sensorsJames Lay08 Oct 2011
Re: [Snort-users] Problem with using 2 sensorsKevin Ross08 Oct 2011
--> Re: [Snort-users] Problem with using 2 sensorsMike Boeckeler08 Oct 2011
--> Re: [Snort-users] Problem with using 2 sensorsJames Lay08 Oct 2011
--> Re: [Snort-users] Problem with using 2 sensorsJoel Esler08 Oct 2011
--> Re: [Snort-users] Problem with using 2 sensorsKevin Ross08 Oct 2011
[Snort-users] Compiling with --enable-sourcefire = ???Eoin Miller07 Oct 2011
Re: [Snort-users] Compiling with --enable-sourcefire = ???Joel Esler07 Oct 2011
Re: [Snort-users] Compiling with --enable-sourcefire = ???Russ Combs07 Oct 2011
[Snort-users] gen-msg.map duplicate entriesEric Olsen07 Oct 2011
Re: [Snort-users] gen-msg.map duplicate entriesRyan Jordan07 Oct 2011
Re: [Snort-users] Snort Wget Failure (can't resolve > www.snort.org)Willst Mail06 Oct 2011
Re: [Snort-users] Snort Wget Failure (can't resolve > www.snort.org)Joel Esler06 Oct 2011
Re: [Snort-users] Snort Wget Failure (can't resolve > www.snort.org)JJ Cummings06 Oct 2011
[Snort-users] Understanding byte_testLay, James06 Oct 2011
Re: [Snort-users] Understanding byte_testrmkml06 Oct 2011
[Snort-users] snort 2.9.1 segfault and general protection errorSalvador, Mario06 Oct 2011
[Snort-users] snort 2.9.1 segfault and general protection errorSalvador, Mario06 Oct 2011
Re: [Snort-users] snort 2.9.1 segfault and general protection errorcarlopmart06 Oct 2011
Re: [Snort-users] snort 2.9.1 segfault and general protection errorJoel Esler06 Oct 2011
Re: [Snort-users] Snort Wget Failure (can't resolve www.snort.org)Joel Esler06 Oct 2011
Re: [Snort-users] Snort Wget Failure (can't resolve www.snort.org)Carney, Megan06 Oct 2011
Re: [Snort-users] Snort Wget Failure (can't resolve www.snort.org)Joel Esler06 Oct 2011
--> Re: [Snort-users] Snort Wget Failure (can't resolve www.snort.org)Negin Nickparsa06 Oct 2011
--> Re: [Snort-users] Snort Wget Failure (can't resolve www.snort.org)Brandon Hall06 Oct 2011
[Snort-users] Cannot access securixlive.comMarty Pikor02 Oct 2011
Re: [Snort-users] Cannot access securixlive.comPaul Halliday06 Oct 2011
[Snort-users] BOTNET-CNC Dropper Win32.Cefyns.A outbound connection triggered by domain parkingJefferson, Shawn05 Oct 2011
Re: [Snort-users] BOTNET-CNC Dropper Win32.Cefyns.A outbound connection triggered by domain parkingNA05 Oct 2011
--> Re: [Snort-users] BOTNET-CNC Dropper Win32.Cefyns.A outbound connection triggered by domain parkingJason Wallace05 Oct 2011
--> Re: [Snort-users] BOTNET-CNC Dropper Win32.Cefyns.A outbound connection triggered by domain parkingJoel Esler05 Oct 2011
[Snort-users] Timestamp Format in alert_fast ModeJason D. McCormick05 Oct 2011
Re: [Snort-users] Timestamp Format in alert_fast ModeRuss Combs05 Oct 2011
--> Re: [Snort-users] Timestamp Format in alert_fast ModeJason D. McCormick05 Oct 2011
[Snort-users] How to check the trace file by using snort ruleQinwen Hu04 Oct 2011
Re: [Snort-users] How to check the trace file by using snort ruleKevin Ross04 Oct 2011
[Snort-users] Logging: alert vs drop with PulledPork using VRT & ET rulesNA04 Oct 2011
Re: [Snort-users] Logging: alert vs drop with PulledPork using VRT & ET rulesJJ Cummings04 Oct 2011
--> Re: [Snort-users] Logging: alert vs drop with PulledPork using VRT & ET rulesNA05 Oct 2011
--> Re: [Snort-users] Logging: alert vs drop with PulledPork using VRT & ET rulesJJC05 Oct 2011
[Snort-users] No packets are captured on Debian6 in mode 1 or 2Nelo Belda04 Oct 2011
Re: [Snort-users] No packets are captured on Debian6 in mode 1 or 2Nelo Belda04 Oct 2011
[Snort-users] Avoid logging sensitive dataJames Lay03 Oct 2011
Re: [Snort-users] Avoid logging sensitive dataAdam Hogan04 Oct 2011
--> Re: [Snort-users] Avoid logging sensitive dataJames Lay04 Oct 2011
Re: [Snort-users] Installing only so_rules with pulledporkJJC03 Oct 2011
Re: [Snort-users] Installing only so_rules with pulledporkJJC03 Oct 2011
Re: [Snort-users] [Snort-Users] Re: Some questions about strem5 preprocessorMatt Watchinski03 Oct 2011
Re: [Snort-users] [Snort-Users] Re: Some questions about strem5 preprocessorcarlopmart03 Oct 2011
Re: [Snort-users] how to disable an so_ruleJJ Cummings02 Oct 2011