Re: [Snort-users] snort http_inspect
This is a discussion on Re: [Snort-users] snort http_inspect within the Snort forums, part of the System Security and Security Related category; On Tue, May 11, nyarlathothep@libero.it wrote: > Hello everyone, > I have a question about the use of ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
05-11-2004
|
|||
|
|||
Re: [Snort-users] snort http_inspect
On Tue, May 11, nyarlathothep@libero.it wrote:
> Hello everyone, > I have a question about the use of the Snorts preprocessors: > I've installed Snort on a Linux box and I've tried from outside to do a APACHE > CHUNKED ENCODE (Bugtraq ID: 5033, CVE:). > Snort records in the database only the http_inspect data, so : (http_inspect) > OVERSIZE CHUNK ENCODING > but it dsnt activate the rules, one of those I think: This sounds like you've stumbled on a known issue. What version are you using? Snort 2.1.2+ has this fix. ------------------------------------------------------- This SF.Net email is sponsored by Sleepycat Software Learn developer strategies Cisco, Motorola, Ericsson & Lucent use to deliver higher performing products faster, at low TCO. http://www.sleepycat.com/telcomwpreg...rom=osdnemail3 _______________________________________________ Snort-users mailing list Snort-users@lists.sourceforge.net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/...fo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.p...st=snort-users 
|
 |
«
Previous Thread
|
Next Thread
»
| Thread Tools | |
| Display Modes | |
Linear Mode
|
|
All times are GMT +1. The time now is 12:17 PM.
