Snort: by author

Previous period
Next period

277 messages starting Feb 25 08 and ending Mar 03 08
Date index | Thread index | Author index

Aaron Giuoco

Strange portscan traffic with dest of 169.254.x.x Aaron Giuoco (Feb 25)
Re: Strange portscan traffic with dest of 169.254.x.x Aaron Giuoco (Feb 25)
Re: Strange portscan traffic with dest of 169.254.x.x Aaron Giuoco (Feb 26)

Aditya Joshi

snort for game traffic analysis Aditya Joshi (Feb 17)

administration

Re: [Snort-users] Snort-users Digest, Vol 21, Issue 2 administration (Feb 06)
Re: [Snort-users] Snort-users Digest, Vol 21, Issue 3 administration (Feb 07)

Agent Smith

Re: custom ruletype (to mysql DB) is broken in snort 2.8.0.1 Agent Smith (Jan 02)
Re: custom ruletype (to mysql DB) is broken in snort 2.8.0.1 Agent Smith (Jan 03)
Re: custom ruletype (to mysql DB) is broken in snort 2.8.0.1 Agent Smith (Jan 03)
custom ruletype (to mysql DB) is broken in snort 2.8.0.1 Agent Smith (Jan 02)

Andreas Maus

Snort 2.8.0.1 segfaults on a specific rule - parser bug (?) Andreas Maus (Jan 15)

Andrew Willy

Re: Port Aggregator Tap alternatives for snort sensor Andrew Willy (Mar 03)

Andy Hey

Snort & SDEE Andy Hey (Feb 18)

Astou Mamayek

snort service error 1067 Astou Mamayek (Mar 19)
snort installation problems Astou Mamayek (Feb 28)

Bachelor, Stephen A CTR USSOCOM HQ

Re: SQL to purge alerts over 1 month old? Bachelor, Stephen A CTR USSOCOM HQ (Feb 04)
Re: snort installation problems Bachelor, Stephen A CTR USSOCOM HQ (Feb 28)

bahamin takhtaei

How can run Snort on 2 CPU? bahamin takhtaei (Mar 02)
How can write rule with a range IP? bahamin takhtaei (Jan 27)

Bamm Visscher

Sguil Version 0.7.0 Bamm Visscher (Mar 25)

Bob Konigsberg

Re: DOS attacks Bob Konigsberg (Mar 13)

Brian Jameson

Does Snort 2.8 work with Barnyard-0.2.0 ? Brian Jameson (Feb 14)

carlopmart

Using antivirus with snort 2.8.x carlopmart (Jan 18)
Re: Using antivirus with snort 2.8.x carlopmart (Jan 18)

Chris Libby

Re: Snort.org site down Chris Libby (Jan 15)

Colin Grady

Re: Barnyard 0.2.0 Patch for op_alert_syslog2 Colin Grady (Jan 11)
ArcSight CEF Output Plugin for Barnyard 0.2.0 Colin Grady (Jan 31)
Barnyard 0.2.0 Patch for op_alert_syslog2 Colin Grady (Jan 10)
Re: Does Snort 2.8 work with Barnyard-0.2.0 ? Colin Grady (Feb 15)

CoryC

Re: Does Snort 2.8 work with Barnyard-0.2.0 ? CoryC (Feb 17)
Re: Snort Rules Availability CoryC (Feb 06)
Oinkmaster so_rules, signatures, and .map files CoryC (Feb 17)
Snort Rules Availability CoryC (Feb 05)

CunningPike

Re: How can write rule with a range IP? CunningPike (Jan 28)
Re: Snort Windows Vista Install CunningPike (Jan 31)
Re: Strange portscan traffic with dest of 169.254.x.x CunningPike (Feb 25)

Daniel Proch

Re: making snort go fast Daniel Proch (Feb 21)

David Thibault

Re: Problems compiling with --enable-inline on CentOS 5.1 David Thibault (Feb 21)
Re: Problems compiling with --enable-inline on CentOS 5.1 David Thibault (Feb 21)
Re: Problems compiling with --enable-inline on CentOS 5.1 David Thibault (Feb 21)
Re: Problems compiling with --enable-inline on CentOS 5.1 David Thibault (Feb 21)
Problems compiling with --enable-inline on CentOS 5.1 David Thibault (Feb 17)

David Williams

Re: making snort go fast David Williams (Feb 14)
Re: making snort go fast David Williams (Feb 14)
making snort go fast David Williams (Feb 14)

dhottinger

Re: Strange portscan traffic with dest of 169.254.x.x dhottinger (Feb 25)

Dragos Ruiu

CanSecWest 2008 PWN2OWN - Mar 26-28 Dragos Ruiu (Mar 20)
CanSecWest 2008 Mar 26-28 Dragos Ruiu (Feb 22)

Frank Knobbe

Re: Community feedback on maintaining the OSSRC web site Frank Knobbe (Mar 27)
Re: making snort go fast Frank Knobbe (Feb 15)

frederick sonnichsen

Missing Portscan Records in 2.8 frederick sonnichsen (Mar 31)
Re: Difference of Alerts, Snort Logs, and Tcpdumps frederick sonnichsen (Mar 04)
Difference of Alerts, Snort Logs, and Tcpdumps frederick sonnichsen (Mar 04)
Changing name of alerts log frederick sonnichsen (Mar 10)
Missing Portscanners in 2.8 - Flow-Portscan vs stream5 frederick sonnichsen (Mar 24)
Re: Changing name of alerts log frederick sonnichsen (Mar 10)
Re: Missing Portscanners in 2.8 - Flow-Portscan vs stream5 frederick sonnichsen (Mar 24)

Gianluca Varenni

[ANNOUNCE] WinPcap 4.1 beta3 has been released Gianluca Varenni (Jan 31)

Giles Coochey

Re: DOS attacks Giles Coochey (Mar 14)

Govind

regarding rule-sets Govind (Feb 14)

Gustavo Monteiro

Re: FATAL ERROR: Failed to initialize dynamic engine Gustavo Monteiro (Jan 23)

hawa abdul

(no subject) hawa abdul (Feb 03)

Helmut Schneider

Re: snort and squid Helmut Schneider (Jan 17)
Re: snort and squid Helmut Schneider (Jan 18)
Re: snort and squid Helmut Schneider (Jan 18)
Re: snort and squid Helmut Schneider (Jan 18)
snort and squid Helmut Schneider (Jan 17)

Hermano Pereira

Problem with flexresp2 (reset_both) and snort 2.8.0.2 Hermano Pereira (Feb 27)

Hutchinson, Andrew (Network Security)

Re: Barynard compile gives "unable to find mysql headersmysql.h Hutchinson, Andrew (Network Security) (Jan 30)

Jack Pepper

Re: snort-2.8.0.2. Bug in MySQL? Jack Pepper (Mar 12)
Re: Snort isn't starting at the Ubuntu: Jack Pepper (Mar 30)
Re: snort-2.8.0.2. Bug in MySQL? Jack Pepper (Mar 13)

James Lay

Flexresp2 appears broken in 2.8.0.1 James Lay (Jan 03)
Re: Snort with barnyard chrooted James Lay (Jan 09)
Snort with barnyard chrooted James Lay (Jan 09)
Re: Snort 2.8.0.1 segfaults on a specific rule - parser bug (?) James Lay (Jan 15)
Re: flexresp2 breaks 2.8.0.1? James Lay (Jan 27)

Jason

Re: Extending CSV output plug-in Jason (Mar 02)
Re: Extending CSV output plug-in Jason (Mar 02)
Re: So rules issue! Jason (Mar 02)
Re: Extending CSV output plug-in Jason (Mar 01)
Re: Extending CSV output plug-in Jason (Mar 02)
Re: Bare byte alerts but no non-ASCII characters! Jason (Feb 21)
Re: Logging Reassembled Packets Jason (Mar 13)

Jason Brvenik

Re: Snort & MySQL Jason Brvenik (Jan 05)
Re: custom ruletype (to mysql DB) is broken in snort 2.8.0.1 Jason Brvenik (Jan 03)

Jason Haar

flexresp2 breaks 2.8.0.1? Jason Haar (Jan 27)

Jay Moloo

Jay Moloo/AMERICA/BAX is out of the office. Jay Moloo (Mar 21)

Jeff Nathan

Re: Flexresp problems Jeff Nathan (Feb 25)

Jennifer Steffens

Denver/Boulder/NoCo Sec Meeting Jennifer Steffens (Mar 05)

Jeremy

Re: Logging Reassembled Packets Jeremy (Mar 13)

JJC

Re: A few issues with Snort JJC (Jan 11)
Re: Snort with barnyard chrooted JJC (Jan 09)
Re: making snort go fast JJC (Feb 14)
Re: snort-2.8.0.2. Bug in MySQL? JJC (Mar 12)
Re: FATAL ERROR: Cannot check flow connection for non-TCP traffic JJC (Jan 28)

Joel Esler

Re: making snort go fast Joel Esler (Feb 14)
Fwd: Snort on Ubuntu LTS Joel Esler (Jan 14)
Re: Does Snort 2.8 work with Barnyard-0.2.0 ? Joel Esler (Feb 15)
Re: Get one specific attack dump from snort dump file. Joel Esler (Jan 05)
Re: sfportscan tuning Joel Esler (Mar 11)
Re: Memory issue! Joel Esler (Feb 14)
Re: Undestanding "OVERSIZE CHUNK ENCODING" alerts Joel Esler (Feb 18)
Re: Logging Reassembled Packets Joel Esler (Mar 13)
Re: Snort Rules Availability Joel Esler (Feb 06)
Re: Snort 2.8.0.1 segfaults on a specific rule - parser bug (?) Joel Esler (Jan 15)
Re: (no subject) Joel Esler (Feb 03)
Re: Strange portscan traffic with dest of 169.254.x.x Joel Esler (Feb 25)
Re: snort and squid Joel Esler (Jan 18)
Re: Snort Rules Availability Joel Esler (Feb 06)
Re: Snort isn't starting at the Ubuntu: Joel Esler (Mar 29)
Re: Snort on Ubuntu LTS Joel Esler (Jan 13)
Re: snort and squid Joel Esler (Jan 17)
Re: Memory issue! Joel Esler (Feb 14)
Re: Changing name of alerts log Joel Esler (Mar 10)
Re: Does Snort 2.8 work with Barnyard-0.2.0 ? Joel Esler (Feb 14)
Re: How can write rule with a range IP? Joel Esler (Jan 27)
Re: sfportscan tuning Joel Esler (Mar 12)
Re: Oinkmaster so_rules, signatures, and .map files Joel Esler (Feb 18)

John Curry

Re: Logging Reassembled Packets John Curry (Mar 14)

John Pritchard

Re: Snort Rules Availability John Pritchard (Feb 05)

Jorge Cuevas

HTTP_Inspect preproc question Jorge Cuevas (Jan 18)

Jorge Luiz Corrêa

Get one specific attack dump from snort dump file. Jorge Luiz Corrêa (Jan 05)

jose wilter frazao

Snort isn't starting at the Ubuntu: jose wilter frazao (Mar 28)

Julio Cesar Gazquez

A few issues with Snort Julio Cesar Gazquez (Jan 11)
Undestanding "OVERSIZE CHUNK ENCODING" alerts Julio Cesar Gazquez (Feb 18)
Re: Bare byte alerts but no non-ASCII characters! Julio Cesar Gazquez (Feb 22)
Re: Bare byte alerts but no non-ASCII characters! Julio Cesar Gazquez (Feb 21)
Bare byte alerts but no non-ASCII characters! Julio Cesar Gazquez (Feb 21)

Justin Heath

Re: Snort 2.8.1 Release Candidate Now Available Justin Heath (Mar 26)

Kamran Shafi

Re: Logging Reassembled Packets Kamran Shafi (Mar 14)
Re: Logging Reassembled Packets Kamran Shafi (Mar 13)
Re: DOS attacks Kamran Shafi (Mar 13)
Re: Extending CSV output plug-in Kamran Shafi (Mar 02)
Re: Extending CSV output plug-in Kamran Shafi (Mar 02)
DOS attacks Kamran Shafi (Mar 12)
Extending CSV output plug-in Kamran Shafi (Mar 01)
Re: sfportscan tuning Kamran Shafi (Mar 12)
Logging Reassembled Packets Kamran Shafi (Mar 12)
Re: sfportscan tuning Kamran Shafi (Mar 11)
sfportscan tuning Kamran Shafi (Mar 11)
Questions on stream inspection Kamran Shafi (Mar 17)
Questions on stream inspection Kamran Shafi (Mar 18)

Lentz, Jim

Windows Event ID Error Lentz, Jim (Feb 15)

Leon

Re: Snort isn't starting at the Ubuntu: Leon (Mar 29)
Re: Snort isn't starting at the Ubuntu: Leon (Mar 31)

Lurene A Grenier

Re: DOS attacks Lurene A Grenier (Mar 13)

Magnus Jäder

Re: Oinkmaster so_rules, signatures, and .map files Magnus Jäder (Feb 18)

Martin Roesch

Re: Logging Reassembled Packets Martin Roesch (Mar 14)
Re: Logging Reassembled Packets Martin Roesch (Mar 13)
Re: ipv6 header scan using snort Martin Roesch (Jan 31)
Re: Perfmonitor / BPF Question Martin Roesch (Jan 16)
Re: Logging Reassembled Packets Martin Roesch (Mar 14)

Matt Jonkman

Re: Snort 2.8.0.1 segfaults on a specific rule - parser bug (?) Matt Jonkman (Jan 16)
Re: making snort go fast Matt Jonkman (Feb 14)
Re: Snort 2.8.0.1 segfaults on a specific rule - parser bug (?) Matt Jonkman (Jan 16)

Michael Steele

Re: Snort Windows Vista Install Michael Steele (Feb 01)

Michael W Cocke

Re: Snort Windows Vista Install Michael W Cocke (Feb 04)
SQL to purge alerts over 1 month old? Michael W Cocke (Feb 04)
Re: SQL to purge alerts over 1 month old? Michael W Cocke (Feb 04)

Mike Guiterman

Webinar on installing and using Snort from the Sourcefire Education Team - Feb. 27, 2008 Mike Guiterman (Feb 21)
Community feedback on maintaining the OSSRC web site Mike Guiterman (Mar 27)
Snort.org problems resolved! Mike Guiterman (Jan 24)
2008 Snort Scholarship Program Mike Guiterman (Feb 19)
Re: Snort Rules Availability Mike Guiterman (Feb 06)
Recent Snort press coverage you might find interesting Mike Guiterman (Mar 21)

Mohamad firman

Ask free software IDS anomaly Mohamad firman (Jan 30)

Nathaniel Richmond

Re: FATAL ERROR: Cannot check flow connection for non-TCP traffic Nathaniel Richmond (Jan 28)

Nerijus Krukauskas

Re: dynamicdetection rules Nerijus Krukauskas (Feb 15)
dynamicdetection rules Nerijus Krukauskas (Feb 08)

Nigel Houghton

Re: Snort Rules Availability Nigel Houghton (Feb 06)

Oink!<noman>

Re: Snort in IPCOP Oink!<noman> (Jan 21)

Pachulski, Keith

Re: Barynard compile gives "unable to find mysql headers mysql.h Pachulski, Keith (Jan 30)

Patrik Nordlén

Re: Snort 2.8.1 Release Candidate Now Available Patrik Nordlén (Mar 26)
Re: Logging Reassembled Packets Patrik Nordlén (Mar 14)

Paul Halliday

Re: Aanval 4 - First Public Appearance Paul Halliday (Mar 27)

Paul Melson

Re: Strange portscan traffic with dest of 169.254.x.x Paul Melson (Feb 25)
Re: logging abnormal traffic Paul Melson (Jan 16)
Re: snort and squid Paul Melson (Jan 17)
Port Negation not working? Paul Melson (Jan 02)
Re: How can run Snort on 2 CPU? Paul Melson (Mar 02)

Paul Schmehl

Re: Snort Rules Availability Paul Schmehl (Feb 06)
Re: Need help in getting barnyard and Snort to work together Paul Schmehl (Jan 30)
Re: SQL to purge alerts over 1 month old? Paul Schmehl (Feb 04)
Re: Need help in getting barnyard and Snort to work together Paul Schmehl (Jan 31)
Snort db archiving script Paul Schmehl (Feb 20)
Re: More questions on Snort/barnyard Paul Schmehl (Jan 31)
Re: SQL to purge alerts over 1 month old? Paul Schmehl (Feb 19)
Re: Does Snort 2.8 work with Barnyard-0.2.0 ? Paul Schmehl (Feb 14)

pierz

Re: [snort-users] uricontent pierz (Feb 09)

Rachid Abdelkhalak

Pear Install Problem Rachid Abdelkhalak (Jan 19)
FATAL ERROR: Failed to initialize dynamic engine Rachid Abdelkhalak (Jan 23)

Rachmat Hidayat Al-Anshar

Re: Fw: [HELP] snort stop processing on "Initializing rule chains" issue Rachmat Hidayat Al-Anshar (Jan 08)

Randal T. Rioux

Re: Does Snort 2.8 work with Barnyard-0.2.0 ? Randal T. Rioux (Feb 15)

RA Operations

Aanval 4 - First Public Appearance RA Operations (Mar 26)

Riccardo Castellani

Snort in IPCOP Riccardo Castellani (Jan 21)
Someone has to analyze Snort logs ? Riccardo Castellani (Feb 02)
Re: Snort in IPCOP Riccardo Castellani (Jan 21)

Richard Bejtlich

Re: dynamicdetection rules Richard Bejtlich (Feb 14)

rmkml

Re: making snort go fast rmkml (Feb 15)
Re: [Snort-sigs] Sourcefire VRT Certified Snort Rules Update rmkml (Jan 08)

Rob Sharp

Perfmonitor / BPF Question Rob Sharp (Jan 16)

Rodney Daniels

Snort Windows Vista Install Rodney Daniels (Jan 31)

sahil aggrawal

ipv6 header scan using snort sahil aggrawal (Jan 31)
problem in getting response from snort 3.0.0.a1.4 sahil aggrawal (Feb 07)

salomon.riedo

Snort-Wireless, any experience? salomon.riedo (Mar 27)
snort-2.8.0.2. Bug in MySQL? salomon.riedo (Mar 12)
Re: snort-2.8.0.2. Bug in MySQL? salomon.riedo (Mar 13)

Security Admin (NetSec)

FATAL ERROR: Cannot check flow connection for non-TCP traffic Security Admin (NetSec) (Jan 28)

serdar uzun

max_header_line_len serdar uzun (Mar 27)
ftp preprocessor problem serdar uzun (Feb 28)

Seth

Re: Port Aggregator Tap alternatives for snort sensor Seth (Mar 04)
Re: Snort Rules Availability Seth (Feb 06)
Re: snort and squid Seth (Jan 18)
Re: Difference of Alerts, Snort Logs, and Tcpdumps Seth (Mar 04)
Re: Snort Rules Availability Seth (Feb 06)
Re: Barnyard install problem! Seth (Mar 03)

Siddhartha Jain

Snort.org site down Siddhartha Jain (Jan 14)

Snort Releases

Snort 2.8.1 Beta Now Available Snort Releases (Feb 28)
Snort 2.8.0.2 Now Available Snort Releases (Feb 19)
Snort 2.8.1 Release Candidate Now Available Snort Releases (Mar 12)

Stephen Reese

Re: Port Aggregator Tap alternatives for snort sensor Stephen Reese (Mar 03)
Port Aggregator Tap alternatives for snort sensor Stephen Reese (Mar 03)
Re: Port Aggregator Tap alternatives for snort sensor Stephen Reese (Mar 04)

sudhakar govindavajhala

Need help in getting barnyard and Snort to work together sudhakar govindavajhala (Jan 30)
Re: More questions on Snort/barnyard sudhakar govindavajhala (Jan 31)
Re: Need help in getting barnyard and Snort to work together sudhakar govindavajhala (Jan 30)
Re: More questions on Snort/barnyard sudhakar govindavajhala (Jan 30)
More questions on Snort/barnyard sudhakar govindavajhala (Jan 30)
Barynard compile gives "unable to find mysql headers mysql.h sudhakar govindavajhala (Jan 30)

tedi . heriyanto

Re: Ask free software IDS anomaly tedi . heriyanto (Jan 31)

Terry Burton

Re: SQL to purge alerts over 1 month old? Terry Burton (Feb 26)

Tim Holmes

Snort on Ubuntu LTS Tim Holmes (Jan 13)

Todd Wease

Re: Problems compiling with --enable-inline on CentOS 5.1 Todd Wease (Feb 21)
Re: DOS attacks Todd Wease (Mar 13)
Re: ftp preprocessor problem Todd Wease (Feb 29)
Re: Problems compiling with --enable-inline on CentOS 5.1 Todd Wease (Feb 21)
Re: custom ruletype (to mysql DB) is broken in snort 2.8.0.1 Todd Wease (Jan 04)
Re: ftp preprocessor problem Todd Wease (Feb 29)
Re: Port Negation not working? Todd Wease (Jan 02)
Re: Bare byte alerts but no non-ASCII characters! Todd Wease (Feb 21)
Re: DOS attacks Todd Wease (Mar 14)
Re: Snort stats! Todd Wease (Jan 22)
Re: Flexresp problems Todd Wease (Feb 22)
Re: max_header_line_len Todd Wease (Mar 27)
Re: Problems compiling with --enable-inline on CentOS 5.1 Todd Wease (Feb 21)
Re: Bare byte alerts but no non-ASCII characters! Todd Wease (Feb 21)
Re: DOS attacks Todd Wease (Mar 13)
Re: custom ruletype (to mysql DB) is broken in snort 2.8.0.1 Todd Wease (Jan 02)
Re: Port Negation not working? Todd Wease (Jan 03)
Re: A few issues with Snort Todd Wease (Jan 11)
Re: Flexresp problems Todd Wease (Feb 21)
Re: Bare byte alerts but no non-ASCII characters! Todd Wease (Feb 22)
Re: Problems compiling with --enable-inline on CentOS 5.1 Todd Wease (Feb 21)

UxBoD

Re: Snort on Ubuntu LTS UxBoD (Jan 13)
Snort & MySQL UxBoD (Jan 05)

Victor Julien

Re: Using antivirus with snort 2.8.x Victor Julien (Jan 18)

Ward, Rob

Flexresp problems Ward, Rob (Feb 19)
Re: Flexresp problems Ward, Rob (Feb 21)

Will Metcalf

Re: [Snort-sigs] Sourcefire VRT Certified Snort Rules Update Will Metcalf (Jan 08)
Re: Logging Reassembled Packets Will Metcalf (Mar 13)

Wim Fournier

Re: logging abnormal traffic Wim Fournier (Jan 16)
logging abnormal traffic Wim Fournier (Jan 16)

ylqids

Can not compile Snort with Flexresp2 using VC6 under windows ylqids (Feb 21)

Zakai Kinan

Memory issue! Zakai Kinan (Feb 14)
Re: Flexresp problems Zakai Kinan (Feb 22)
Re: Flexresp problems Zakai Kinan (Feb 24)
Re: SQL to purge alerts over 1 month old? Zakai Kinan (Feb 19)
Barnyard install problem! Zakai Kinan (Mar 01)
So rules issue! Zakai Kinan (Mar 02)
Re: Snort Rules Availability Zakai Kinan (Feb 18)
Snort stats! Zakai Kinan (Jan 22)
Re: Barnyard install problem! Zakai Kinan (Mar 03)
Re: Flexresp problems Zakai Kinan (Feb 19)
Re: Memory issue! Zakai Kinan (Feb 14)
Re: DOS attacks Zakai Kinan (Mar 13)
Re: Barnyard install problem! Zakai Kinan (Mar 03)
Previous period
Next period