IDS mailing list archives
Snort-Inline drop rulebase
From: mike () honeynet org
Date: Mon, 13 Jan 2003 18:14:13 -0500 (EST)
As part of its continued development and support of Snort-Inline, the Honeynet Project has released the Snort-Inline drop.rules set. This single rulebase is a minimum of attacks that Honeynets should consider dropping on outbound traffic. It is hoped that this rulebase will make Snort-Inline, and Honeynets in general, easier to deploy. The Project intends to maintain this rulebase, so as new attacks and signatures are identified, they will be added to this ruleset. This ruleset should currently be considered experimental. Any help with the rulebase is greatly appreciated. http://www.honeynet.org/papers/honeynet/tools/ Thanks!
Current thread:
- Snort-Inline drop rulebase mike (Jan 15)