Snort mailing list archives

Re: Possible Evasion in http_inspect

From: Nigel Houghton <nigel () sourcefire com>
Date: Thu, 1 Jun 2006 11:29:44 -0500

Please do not repost to the snort- lists, if you don't get messages you
send to the list, check your settings in the mailman interface for that
list. Also bear in mind that email from sourceforge (where the lists are
hosted) can be somewhat erratic.

On  0, Joel Ebrahimi <jebrahimi () demarc com> wrote:

It  doesnt  appear that the email I sent out prior to this to both the
devel  list  and users list ever made it through entirely( I see it on
the  marc  mirror  but I never got it sent to me and it never seems to
have made it to users).
Since  the bypass is trivial to implement I would hope that this patch
could get reviewed by the devel/user community asap.
Reposting yesterdays message below.


+--------------------------------------------------------------------+
     Nigel Houghton      Research Engineer       Sourcefire Inc.
                   Vulnerability Research Team

         There is no theory of evolution, just a list
            of creatures Vin Diesel allows to live.


-------------------------------------------------------
All the advantages of Linux Managed Hosting--Without the Cost and Risk!
Fully trained technicians. The highest number of Red Hat certifications in
the hosting industry. Fanatical Support. Click to learn more
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=107521&bid=248729&dat=121642
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Current thread:

RE: [Snort-devel] Possible Evasion in http_inspect Joel Ebrahimi (Jun 01)
- Re: Possible Evasion in http_inspect Nigel Houghton (Jun 01)