Snort mailing list archives

Re: stealth interface question

From: Mike Shaw <mshaw () wwisp com>
Date: Wed, 12 Dec 2001 15:27:26 -0600

I've always wondered about this.

Could snort be compromised via a special buffer overflow sent to a networkit's monitoring? (theoretically...we know the developers are good!)


-Mike

At 12:35 PM 12/12/2001 -0800, Merrick, Gary wrote:

My Snort box has a stealth interface that doesn't have an IP address, andit seems to work very well. Is there any reason to also use a read-only cable?
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list




_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Current thread:

stealth interface question Merrick, Gary (Dec 12)
- Re: stealth interface question Andy Steingruebl (Dec 12)
- Re: stealth interface question Brian (Dec 13)
- <Possible follow-ups>
- Re: stealth interface question Mike Shaw (Dec 12)
  - Re: stealth interface question Fyodor (Dec 12)