Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Report Compiling

From: "Matt Todd" <Matt.Todd () cityofmemphis org>
Date: Wed, 05 Feb 2003 14:25:38 -0600
Anyone have a quick method for gathering the packets/headers etc necessary to send to an ISP about an attack?  I'm 
using one sensor box (running rh73 and 1.9 snort) piping alerts to another rh box with mysql and acid front end.

Also curious of folks opinions on the IIS unicode attacks and such, it's by far my most frequent alert, is this 
something you believe should be reported to the offending persons ISP?

Thanks,

Matt




-------------------------------------------------------
This SF.NET email is sponsored by:
SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See!
http://www.vasoftware.com
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: