Snort mailing list archives
Re: stealth interface question
From: Mike Shaw <mshaw () wwisp com>
Date: Wed, 12 Dec 2001 15:27:26 -0600
I've always wondered about this.Could snort be compromised via a special buffer overflow sent to a network it's monitoring? (theoretically...we know the developers are good!)
-Mike At 12:35 PM 12/12/2001 -0800, Merrick, Gary wrote:
My Snort box has a stealth interface that doesn't have an IP address, and it seems to work very well. Is there any reason to also use a read-only cable?_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- stealth interface question Merrick, Gary (Dec 12)
- Re: stealth interface question Andy Steingruebl (Dec 12)
- Re: stealth interface question Brian (Dec 13)
- <Possible follow-ups>
- Re: stealth interface question Mike Shaw (Dec 12)
- Re: stealth interface question Fyodor (Dec 12)