Snort mailing list archives
snort rule to detect nmap portscan with -P0 option
From: linux <risingtux () softhome net>
Date: Mon, 10 Jan 2005 10:40:58 +0530
dear all,I'm using snort and snortsam in my organization to keep watch on all network activity.
To block suspicious activity i have configure snortsam along with snort.. everythign is working fine ..But i noticed that port scan attack plcaed with -P0 option are not getting detected .
Pl help me out to detect that also . With regards linux admin ------------------------------------------------------- The SF.Net email is sponsored by: Beat the post-holiday blues Get a FREE limited edition SourceForge.net t-shirt from ThinkGeek. It's fun and FREE -- well, almost....http://www.thinkgeek.com/sfshirt _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- snort rule to detect nmap portscan with -P0 option Nilesh (Jan 10)
- <Possible follow-ups>
- snort rule to detect nmap portscan with -P0 option linux (Jan 11)
- RE: snort rule to detect nmap portscan with -P0 option Bob Konigsberg (Jan 12)
- RE: snort rule to detect nmap portscan with -P0 option Frank Knobbe (Jan 12)
- RE: snort rule to detect nmap portscan with -P0option Bob Konigsberg (Jan 12)
- RE: snort rule to detect nmap portscan with -P0 option Bob Konigsberg (Jan 12)