Snort mailing list archives
spp_defrag.c v1.5.1
From: Dragos Ruiu <dr () kyx net>
Date: Tue, 10 Jul 2001 12:43:44 -0700
Major problem resolved... fragment timeouts had some timewarps. Also all related fragments also flushed during trash sweep now. Unless someone can blow this one up too I'm off to work on spp_defrag.c version 2.0 with some nifty new features as well as even more efficiency and another project of mine.... the Onyx polymorphic mutating shellcode defender. The other IDS vendors are going to have fun with that one... snicker... :-) (reference: ADMmutate-0.8.1, re: defcon Saturday, oh wait, oops, that's in the future still.... those damn time-warps! :-) cheers, --dr (instructions... replace spp_defrag.c, rebuild, and enable preprocessor defrag in snort.conf) -- kyx.net - we're from the future
Attachment:
spp_defrag.c
Description:
Current thread:
- spp_defrag.c v1.5 Dragos Ruiu (Jul 10)
- spp_defrag.c v1.5.1 Dragos Ruiu (Jul 10)
- Re: spp_defrag.c v1.5.1 François Désarménien (Jul 11)
- Re: spp_defrag.c v1.5.1: SIGSEGV François Désarménien (Jul 11)
- Re: Re: [Snort-users] spp_defrag.c v1.5.1: SIGSEGV Dragos Ruiu (Jul 11)
- Re: spp_defrag.c v1.5.1 François Désarménien (Jul 11)
- spp_defrag.c v1.5.1 Dragos Ruiu (Jul 10)
- <Possible follow-ups>
- RE: spp_defrag.c v1.5 Thomas Whipp (Jul 10)