Re: Re: Re: Re: Re: HTTP traffic

["Abhishek Bhuyan" <abhuyan () gmail com>]

"part of company's properity project." - yes
abhicc - okay... give me one or two browser bugs and write a perfect
snort rule for those to detect it, I'll show you some live examples
how false positive might occur.
I'm not aware of if people share such things in these kind of
conferences, but I'm quite sure people do in thesis :). And I never
came to any conclusion. Just said chances are there.

--Abhishek


On 11 Aug 2007 03:44:12 -0000, abhicc285 () gmail com <abhicc285 () gmail com> wrote:
> Abhishek Bhyhan Says :----
>
>
> " What kind of result you want to know? I cannot share with you the benchmark or test setup details, but could 
> certainly give you many examples. Again, that would be disclosing something which should not be :) "
>
>
>
> Abhishek Bhyan, I am interested in knowing how you came to conclusion that client side rules give more false 
> positives than Web Server Side.  You are sharing the results and not the testsetup or benchmark.  Has it been 
> published in some conference like black hat, IEEE SP, Virus bulletin or this is some thing which you did on you own 
> or is it a part of company's properity project.
>
>
> Has it been validated????
>
>
>
> ------------------------------------------------------------------------
> Test Your IDS
>
> Is your IDS deployed correctly?
> Find out quickly and easily by testing it
> with real-world attacks from CORE IMPACT.
> Go to http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=intro_sfw
> to learn more.
> ------------------------------------------------------------------------

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=intro_sfw 
to learn more.
------------------------------------------------------------------------