Full Disclosure mailing list archives
Re: Snort and SourceFire Compromised
From: Larry Vaden <vaden () texoma net>
Date: Sun, 21 Sep 2003 09:54:07 -0500
Brian wrote:
Yes, this was a LONG time ago. Note that ALL of the date timestamps are dashed out. Gee, I wonder why. As well as normal incident response, the entire snort team did a major audit of snort at that time for anything injected.BTW, for those of you wanting the original sneeze, its still available online at http://snort.sourceforge.net/sneeze-1.0.tar
Hi Brian,Are you willing to share anything about the incident which would help those of us who naturally think we're a step or two behind your org in preventing compromises?
e.g., did any of the following play a role? .rhosts weak passwords yada yada rgds/ldv _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Snort and SourceFire Compromised joeypork (Sep 21)
- Re: Snort and SourceFire Compromised V.O. (Sep 21)
- Re: Snort and SourceFire Compromised Brian (Sep 21)
- Re: Snort and SourceFire Compromised Larry Vaden (Sep 21)