SeolMa

[auto241065 () hushmail com]

What are your thoughts on the IDS evasion method presented in the latest issue of phrack? Do frag2 and stream4 make the 
traffic appear to snort the same way it would arrive at the host, defeating this evasion attempt? My testing with this 
method is limited due to the fact that it seems there were errors in the example code meant to drive me crazy.

Free, secure Web-based email, now OpenPGP compliant - www.hushmail.com


_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
http://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users