Snort mailing list archives

Previous By Date Next
Previous By Thread Next

output analysis

From: RAMALINGA Reddy <Rgreddy1 () covansys com>
Date: Wed, 21 Nov 2001 23:13:20 -0500
Hello Gurus,
        The following is the formatted output of snort tool.

Hits    Source          Destination     details
------  --------------- ---------------------   ----------
9       A               B               portscan unique ports
58      A                               portscan unique ip
26      A               C               WEB-MISC long basic authorization
string
169     A               B               ICMP L3retriever Ping
56      A               B               ICMP PING NMAP
22      A               B               MISC Large ICMP Packet

        what can I infer from this ? 
        Is ICMP L3retriever Ping dangerous ? 
        How is WEB-MISC 403 Forbidden dangerous ?

Please help.
Rali

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: