Snort: by author
277 messages
starting Feb 25 08 and
ending Mar 03 08
Date index |
Thread index |
Author index
Aaron Giuoco
Strange portscan traffic with dest of 169.254.x.x Aaron Giuoco (Feb 25)
Re: Strange portscan traffic with dest of 169.254.x.x Aaron Giuoco (Feb 25)
Re: Strange portscan traffic with dest of 169.254.x.x Aaron Giuoco (Feb 26)
Aditya Joshi
snort for game traffic analysis Aditya Joshi (Feb 17)
administration
Re: [Snort-users] Snort-users Digest, Vol 21, Issue 2 administration (Feb 06)
Re: [Snort-users] Snort-users Digest, Vol 21, Issue 3 administration (Feb 07)
Agent Smith
Re: custom ruletype (to mysql DB) is broken in snort 2.8.0.1 Agent Smith (Jan 02)
Re: custom ruletype (to mysql DB) is broken in snort 2.8.0.1 Agent Smith (Jan 03)
Re: custom ruletype (to mysql DB) is broken in snort 2.8.0.1 Agent Smith (Jan 03)
custom ruletype (to mysql DB) is broken in snort 2.8.0.1 Agent Smith (Jan 02)
Andreas Maus
Snort 2.8.0.1 segfaults on a specific rule - parser bug (?) Andreas Maus (Jan 15)
Andrew Willy
Re: Port Aggregator Tap alternatives for snort sensor Andrew Willy (Mar 03)
Andy Hey
Snort & SDEE Andy Hey (Feb 18)
Astou Mamayek
snort service error 1067 Astou Mamayek (Mar 19)
snort installation problems Astou Mamayek (Feb 28)
Bachelor, Stephen A CTR USSOCOM HQ
Re: SQL to purge alerts over 1 month old? Bachelor, Stephen A CTR USSOCOM HQ (Feb 04)
Re: snort installation problems Bachelor, Stephen A CTR USSOCOM HQ (Feb 28)
bahamin takhtaei
How can run Snort on 2 CPU? bahamin takhtaei (Mar 02)
How can write rule with a range IP? bahamin takhtaei (Jan 27)
Bamm Visscher
Sguil Version 0.7.0 Bamm Visscher (Mar 25)
Bob Konigsberg
Re: DOS attacks Bob Konigsberg (Mar 13)
Brian Jameson
Does Snort 2.8 work with Barnyard-0.2.0 ? Brian Jameson (Feb 14)
carlopmart
Using antivirus with snort 2.8.x carlopmart (Jan 18)
Re: Using antivirus with snort 2.8.x carlopmart (Jan 18)
Chris Libby
Re: Snort.org site down Chris Libby (Jan 15)
Colin Grady
Re: Barnyard 0.2.0 Patch for op_alert_syslog2 Colin Grady (Jan 11)
ArcSight CEF Output Plugin for Barnyard 0.2.0 Colin Grady (Jan 31)
Barnyard 0.2.0 Patch for op_alert_syslog2 Colin Grady (Jan 10)
Re: Does Snort 2.8 work with Barnyard-0.2.0 ? Colin Grady (Feb 15)
CoryC
Re: Does Snort 2.8 work with Barnyard-0.2.0 ? CoryC (Feb 17)
Re: Snort Rules Availability CoryC (Feb 06)
Oinkmaster so_rules, signatures, and .map files CoryC (Feb 17)
Snort Rules Availability CoryC (Feb 05)
CunningPike
Re: How can write rule with a range IP? CunningPike (Jan 28)
Re: Snort Windows Vista Install CunningPike (Jan 31)
Re: Strange portscan traffic with dest of 169.254.x.x CunningPike (Feb 25)
Daniel Proch
Re: making snort go fast Daniel Proch (Feb 21)
David Thibault
Re: Problems compiling with --enable-inline on CentOS 5.1 David Thibault (Feb 21)
Re: Problems compiling with --enable-inline on CentOS 5.1 David Thibault (Feb 21)
Re: Problems compiling with --enable-inline on CentOS 5.1 David Thibault (Feb 21)
Re: Problems compiling with --enable-inline on CentOS 5.1 David Thibault (Feb 21)
Problems compiling with --enable-inline on CentOS 5.1 David Thibault (Feb 17)
David Williams
Re: making snort go fast David Williams (Feb 14)
Re: making snort go fast David Williams (Feb 14)
making snort go fast David Williams (Feb 14)
dhottinger
Re: Strange portscan traffic with dest of 169.254.x.x dhottinger (Feb 25)
Dragos Ruiu
CanSecWest 2008 PWN2OWN - Mar 26-28 Dragos Ruiu (Mar 20)
CanSecWest 2008 Mar 26-28 Dragos Ruiu (Feb 22)
Frank Knobbe
Re: Community feedback on maintaining the OSSRC web site Frank Knobbe (Mar 27)
Re: making snort go fast Frank Knobbe (Feb 15)
frederick sonnichsen
Missing Portscan Records in 2.8 frederick sonnichsen (Mar 31)
Re: Difference of Alerts, Snort Logs, and Tcpdumps frederick sonnichsen (Mar 04)
Difference of Alerts, Snort Logs, and Tcpdumps frederick sonnichsen (Mar 04)
Changing name of alerts log frederick sonnichsen (Mar 10)
Missing Portscanners in 2.8 - Flow-Portscan vs stream5 frederick sonnichsen (Mar 24)
Re: Changing name of alerts log frederick sonnichsen (Mar 10)
Re: Missing Portscanners in 2.8 - Flow-Portscan vs stream5 frederick sonnichsen (Mar 24)
Gianluca Varenni
[ANNOUNCE] WinPcap 4.1 beta3 has been released Gianluca Varenni (Jan 31)
Giles Coochey
Re: DOS attacks Giles Coochey (Mar 14)
Govind
regarding rule-sets Govind (Feb 14)
Gustavo Monteiro
Re: FATAL ERROR: Failed to initialize dynamic engine Gustavo Monteiro (Jan 23)
hawa abdul
(no subject) hawa abdul (Feb 03)
Helmut Schneider
Re: snort and squid Helmut Schneider (Jan 17)
Re: snort and squid Helmut Schneider (Jan 18)
Re: snort and squid Helmut Schneider (Jan 18)
Re: snort and squid Helmut Schneider (Jan 18)
snort and squid Helmut Schneider (Jan 17)
Hermano Pereira
Problem with flexresp2 (reset_both) and snort 2.8.0.2 Hermano Pereira (Feb 27)
Hutchinson, Andrew (Network Security)
Re: Barynard compile gives "unable to find mysql headersmysql.h Hutchinson, Andrew (Network Security) (Jan 30)
Jack Pepper
Re: snort-2.8.0.2. Bug in MySQL? Jack Pepper (Mar 12)
Re: Snort isn't starting at the Ubuntu: Jack Pepper (Mar 30)
Re: snort-2.8.0.2. Bug in MySQL? Jack Pepper (Mar 13)
James Lay
Flexresp2 appears broken in 2.8.0.1 James Lay (Jan 03)
Re: Snort with barnyard chrooted James Lay (Jan 09)
Snort with barnyard chrooted James Lay (Jan 09)
Re: Snort 2.8.0.1 segfaults on a specific rule - parser bug (?) James Lay (Jan 15)
Re: flexresp2 breaks 2.8.0.1? James Lay (Jan 27)
Jason
Re: Extending CSV output plug-in Jason (Mar 02)
Re: Extending CSV output plug-in Jason (Mar 02)
Re: So rules issue! Jason (Mar 02)
Re: Extending CSV output plug-in Jason (Mar 01)
Re: Extending CSV output plug-in Jason (Mar 02)
Re: Bare byte alerts but no non-ASCII characters! Jason (Feb 21)
Re: Logging Reassembled Packets Jason (Mar 13)
Jason Brvenik
Re: Snort & MySQL Jason Brvenik (Jan 05)
Re: custom ruletype (to mysql DB) is broken in snort 2.8.0.1 Jason Brvenik (Jan 03)
Jason Haar
flexresp2 breaks 2.8.0.1? Jason Haar (Jan 27)
Jay Moloo
Jay Moloo/AMERICA/BAX is out of the office. Jay Moloo (Mar 21)
Jeff Nathan
Re: Flexresp problems Jeff Nathan (Feb 25)
Jennifer Steffens
Denver/Boulder/NoCo Sec Meeting Jennifer Steffens (Mar 05)
Jeremy
Re: Logging Reassembled Packets Jeremy (Mar 13)
JJC
Re: A few issues with Snort JJC (Jan 11)
Re: Snort with barnyard chrooted JJC (Jan 09)
Re: making snort go fast JJC (Feb 14)
Re: snort-2.8.0.2. Bug in MySQL? JJC (Mar 12)
Re: FATAL ERROR: Cannot check flow connection for non-TCP traffic JJC (Jan 28)
Joel Esler
Re: making snort go fast Joel Esler (Feb 14)
Fwd: Snort on Ubuntu LTS Joel Esler (Jan 14)
Re: Does Snort 2.8 work with Barnyard-0.2.0 ? Joel Esler (Feb 15)
Re: Get one specific attack dump from snort dump file. Joel Esler (Jan 05)
Re: sfportscan tuning Joel Esler (Mar 11)
Re: Memory issue! Joel Esler (Feb 14)
Re: Undestanding "OVERSIZE CHUNK ENCODING" alerts Joel Esler (Feb 18)
Re: Logging Reassembled Packets Joel Esler (Mar 13)
Re: Snort Rules Availability Joel Esler (Feb 06)
Re: Snort 2.8.0.1 segfaults on a specific rule - parser bug (?) Joel Esler (Jan 15)
Re: (no subject) Joel Esler (Feb 03)
Re: Strange portscan traffic with dest of 169.254.x.x Joel Esler (Feb 25)
Re: snort and squid Joel Esler (Jan 18)
Re: Snort Rules Availability Joel Esler (Feb 06)
Re: Snort isn't starting at the Ubuntu: Joel Esler (Mar 29)
Re: Snort on Ubuntu LTS Joel Esler (Jan 13)
Re: snort and squid Joel Esler (Jan 17)
Re: Memory issue! Joel Esler (Feb 14)
Re: Changing name of alerts log Joel Esler (Mar 10)
Re: Does Snort 2.8 work with Barnyard-0.2.0 ? Joel Esler (Feb 14)
Re: How can write rule with a range IP? Joel Esler (Jan 27)
Re: sfportscan tuning Joel Esler (Mar 12)
Re: Oinkmaster so_rules, signatures, and .map files Joel Esler (Feb 18)
John Curry
Re: Logging Reassembled Packets John Curry (Mar 14)
John Pritchard
Re: Snort Rules Availability John Pritchard (Feb 05)
Jorge Cuevas
HTTP_Inspect preproc question Jorge Cuevas (Jan 18)
Jorge Luiz Corrêa
Get one specific attack dump from snort dump file. Jorge Luiz Corrêa (Jan 05)
jose wilter frazao
Snort isn't starting at the Ubuntu: jose wilter frazao (Mar 28)
Julio Cesar Gazquez
A few issues with Snort Julio Cesar Gazquez (Jan 11)
Undestanding "OVERSIZE CHUNK ENCODING" alerts Julio Cesar Gazquez (Feb 18)
Re: Bare byte alerts but no non-ASCII characters! Julio Cesar Gazquez (Feb 22)
Re: Bare byte alerts but no non-ASCII characters! Julio Cesar Gazquez (Feb 21)
Bare byte alerts but no non-ASCII characters! Julio Cesar Gazquez (Feb 21)
Justin Heath
Re: Snort 2.8.1 Release Candidate Now Available Justin Heath (Mar 26)
Kamran Shafi
Re: Logging Reassembled Packets Kamran Shafi (Mar 14)
Re: Logging Reassembled Packets Kamran Shafi (Mar 13)
Re: DOS attacks Kamran Shafi (Mar 13)
Re: Extending CSV output plug-in Kamran Shafi (Mar 02)
Re: Extending CSV output plug-in Kamran Shafi (Mar 02)
DOS attacks Kamran Shafi (Mar 12)
Extending CSV output plug-in Kamran Shafi (Mar 01)
Re: sfportscan tuning Kamran Shafi (Mar 12)
Logging Reassembled Packets Kamran Shafi (Mar 12)
Re: sfportscan tuning Kamran Shafi (Mar 11)
sfportscan tuning Kamran Shafi (Mar 11)
Questions on stream inspection Kamran Shafi (Mar 17)
Questions on stream inspection Kamran Shafi (Mar 18)
Lentz, Jim
Windows Event ID Error Lentz, Jim (Feb 15)
Leon
Re: Snort isn't starting at the Ubuntu: Leon (Mar 29)
Re: Snort isn't starting at the Ubuntu: Leon (Mar 31)
Lurene A Grenier
Re: DOS attacks Lurene A Grenier (Mar 13)
Magnus Jäder
Re: Oinkmaster so_rules, signatures, and .map files Magnus Jäder (Feb 18)
Martin Roesch
Re: Logging Reassembled Packets Martin Roesch (Mar 14)
Re: Logging Reassembled Packets Martin Roesch (Mar 13)
Re: ipv6 header scan using snort Martin Roesch (Jan 31)
Re: Perfmonitor / BPF Question Martin Roesch (Jan 16)
Re: Logging Reassembled Packets Martin Roesch (Mar 14)
Matt Jonkman
Re: Snort 2.8.0.1 segfaults on a specific rule - parser bug (?) Matt Jonkman (Jan 16)
Re: making snort go fast Matt Jonkman (Feb 14)
Re: Snort 2.8.0.1 segfaults on a specific rule - parser bug (?) Matt Jonkman (Jan 16)
Michael Steele
Re: Snort Windows Vista Install Michael Steele (Feb 01)
Michael W Cocke
Re: Snort Windows Vista Install Michael W Cocke (Feb 04)
SQL to purge alerts over 1 month old? Michael W Cocke (Feb 04)
Re: SQL to purge alerts over 1 month old? Michael W Cocke (Feb 04)
Mike Guiterman
Webinar on installing and using Snort from the Sourcefire Education Team - Feb. 27, 2008 Mike Guiterman (Feb 21)
Community feedback on maintaining the OSSRC web site Mike Guiterman (Mar 27)
Snort.org problems resolved! Mike Guiterman (Jan 24)
2008 Snort Scholarship Program Mike Guiterman (Feb 19)
Re: Snort Rules Availability Mike Guiterman (Feb 06)
Recent Snort press coverage you might find interesting Mike Guiterman (Mar 21)
Mohamad firman
Ask free software IDS anomaly Mohamad firman (Jan 30)
Nathaniel Richmond
Re: FATAL ERROR: Cannot check flow connection for non-TCP traffic Nathaniel Richmond (Jan 28)
Nerijus Krukauskas
Re: dynamicdetection rules Nerijus Krukauskas (Feb 15)
dynamicdetection rules Nerijus Krukauskas (Feb 08)
Nigel Houghton
Re: Snort Rules Availability Nigel Houghton (Feb 06)
Oink!<noman>
Re: Snort in IPCOP Oink!<noman> (Jan 21)
Pachulski, Keith
Re: Barynard compile gives "unable to find mysql headers mysql.h Pachulski, Keith (Jan 30)
Patrik Nordlén
Re: Snort 2.8.1 Release Candidate Now Available Patrik Nordlén (Mar 26)
Re: Logging Reassembled Packets Patrik Nordlén (Mar 14)
Paul Halliday
Re: Aanval 4 - First Public Appearance Paul Halliday (Mar 27)
Paul Melson
Re: Strange portscan traffic with dest of 169.254.x.x Paul Melson (Feb 25)
Re: logging abnormal traffic Paul Melson (Jan 16)
Re: snort and squid Paul Melson (Jan 17)
Port Negation not working? Paul Melson (Jan 02)
Re: How can run Snort on 2 CPU? Paul Melson (Mar 02)
Paul Schmehl
Re: Snort Rules Availability Paul Schmehl (Feb 06)
Re: Need help in getting barnyard and Snort to work together Paul Schmehl (Jan 30)
Re: SQL to purge alerts over 1 month old? Paul Schmehl (Feb 04)
Re: Need help in getting barnyard and Snort to work together Paul Schmehl (Jan 31)
Snort db archiving script Paul Schmehl (Feb 20)
Re: More questions on Snort/barnyard Paul Schmehl (Jan 31)
Re: SQL to purge alerts over 1 month old? Paul Schmehl (Feb 19)
Re: Does Snort 2.8 work with Barnyard-0.2.0 ? Paul Schmehl (Feb 14)
pierz
Re: [snort-users] uricontent pierz (Feb 09)
Rachid Abdelkhalak
Pear Install Problem Rachid Abdelkhalak (Jan 19)
FATAL ERROR: Failed to initialize dynamic engine Rachid Abdelkhalak (Jan 23)
Rachmat Hidayat Al-Anshar
Re: Fw: [HELP] snort stop processing on "Initializing rule chains" issue Rachmat Hidayat Al-Anshar (Jan 08)
Randal T. Rioux
Re: Does Snort 2.8 work with Barnyard-0.2.0 ? Randal T. Rioux (Feb 15)
RA Operations
Aanval 4 - First Public Appearance RA Operations (Mar 26)
Riccardo Castellani
Snort in IPCOP Riccardo Castellani (Jan 21)
Someone has to analyze Snort logs ? Riccardo Castellani (Feb 02)
Re: Snort in IPCOP Riccardo Castellani (Jan 21)
Richard Bejtlich
Re: dynamicdetection rules Richard Bejtlich (Feb 14)
rmkml
Re: making snort go fast rmkml (Feb 15)
Re: [Snort-sigs] Sourcefire VRT Certified Snort Rules Update rmkml (Jan 08)
Rob Sharp
Perfmonitor / BPF Question Rob Sharp (Jan 16)
Rodney Daniels
Snort Windows Vista Install Rodney Daniels (Jan 31)
sahil aggrawal
ipv6 header scan using snort sahil aggrawal (Jan 31)
problem in getting response from snort 3.0.0.a1.4 sahil aggrawal (Feb 07)
salomon.riedo
Snort-Wireless, any experience? salomon.riedo (Mar 27)
snort-2.8.0.2. Bug in MySQL? salomon.riedo (Mar 12)
Re: snort-2.8.0.2. Bug in MySQL? salomon.riedo (Mar 13)
Security Admin (NetSec)
FATAL ERROR: Cannot check flow connection for non-TCP traffic Security Admin (NetSec) (Jan 28)
serdar uzun
max_header_line_len serdar uzun (Mar 27)
ftp preprocessor problem serdar uzun (Feb 28)
Seth
Re: Port Aggregator Tap alternatives for snort sensor Seth (Mar 04)
Re: Snort Rules Availability Seth (Feb 06)
Re: snort and squid Seth (Jan 18)
Re: Difference of Alerts, Snort Logs, and Tcpdumps Seth (Mar 04)
Re: Snort Rules Availability Seth (Feb 06)
Re: Barnyard install problem! Seth (Mar 03)
Siddhartha Jain
Snort.org site down Siddhartha Jain (Jan 14)
Snort Releases
Snort 2.8.1 Beta Now Available Snort Releases (Feb 28)
Snort 2.8.0.2 Now Available Snort Releases (Feb 19)
Snort 2.8.1 Release Candidate Now Available Snort Releases (Mar 12)
Stephen Reese
Re: Port Aggregator Tap alternatives for snort sensor Stephen Reese (Mar 03)
Port Aggregator Tap alternatives for snort sensor Stephen Reese (Mar 03)
Re: Port Aggregator Tap alternatives for snort sensor Stephen Reese (Mar 04)
sudhakar govindavajhala
Need help in getting barnyard and Snort to work together sudhakar govindavajhala (Jan 30)
Re: More questions on Snort/barnyard sudhakar govindavajhala (Jan 31)
Re: Need help in getting barnyard and Snort to work together sudhakar govindavajhala (Jan 30)
Re: More questions on Snort/barnyard sudhakar govindavajhala (Jan 30)
More questions on Snort/barnyard sudhakar govindavajhala (Jan 30)
Barynard compile gives "unable to find mysql headers mysql.h sudhakar govindavajhala (Jan 30)
tedi . heriyanto
Re: Ask free software IDS anomaly tedi . heriyanto (Jan 31)
Terry Burton
Re: SQL to purge alerts over 1 month old? Terry Burton (Feb 26)
Tim Holmes
Snort on Ubuntu LTS Tim Holmes (Jan 13)
Todd Wease
Re: Problems compiling with --enable-inline on CentOS 5.1 Todd Wease (Feb 21)
Re: DOS attacks Todd Wease (Mar 13)
Re: ftp preprocessor problem Todd Wease (Feb 29)
Re: Problems compiling with --enable-inline on CentOS 5.1 Todd Wease (Feb 21)
Re: custom ruletype (to mysql DB) is broken in snort 2.8.0.1 Todd Wease (Jan 04)
Re: ftp preprocessor problem Todd Wease (Feb 29)
Re: Port Negation not working? Todd Wease (Jan 02)
Re: Bare byte alerts but no non-ASCII characters! Todd Wease (Feb 21)
Re: DOS attacks Todd Wease (Mar 14)
Re: Snort stats! Todd Wease (Jan 22)
Re: Flexresp problems Todd Wease (Feb 22)
Re: max_header_line_len Todd Wease (Mar 27)
Re: Problems compiling with --enable-inline on CentOS 5.1 Todd Wease (Feb 21)
Re: Bare byte alerts but no non-ASCII characters! Todd Wease (Feb 21)
Re: DOS attacks Todd Wease (Mar 13)
Re: custom ruletype (to mysql DB) is broken in snort 2.8.0.1 Todd Wease (Jan 02)
Re: Port Negation not working? Todd Wease (Jan 03)
Re: A few issues with Snort Todd Wease (Jan 11)
Re: Flexresp problems Todd Wease (Feb 21)
Re: Bare byte alerts but no non-ASCII characters! Todd Wease (Feb 22)
Re: Problems compiling with --enable-inline on CentOS 5.1 Todd Wease (Feb 21)
UxBoD
Re: Snort on Ubuntu LTS UxBoD (Jan 13)
Snort & MySQL UxBoD (Jan 05)
Victor Julien
Re: Using antivirus with snort 2.8.x Victor Julien (Jan 18)
Ward, Rob
Flexresp problems Ward, Rob (Feb 19)
Re: Flexresp problems Ward, Rob (Feb 21)
Will Metcalf
Re: [Snort-sigs] Sourcefire VRT Certified Snort Rules Update Will Metcalf (Jan 08)
Re: Logging Reassembled Packets Will Metcalf (Mar 13)
Wim Fournier
Re: logging abnormal traffic Wim Fournier (Jan 16)
logging abnormal traffic Wim Fournier (Jan 16)
ylqids
Can not compile Snort with Flexresp2 using VC6 under windows ylqids (Feb 21)
Zakai Kinan
Memory issue! Zakai Kinan (Feb 14)
Re: Flexresp problems Zakai Kinan (Feb 22)
Re: Flexresp problems Zakai Kinan (Feb 24)
Re: SQL to purge alerts over 1 month old? Zakai Kinan (Feb 19)
Barnyard install problem! Zakai Kinan (Mar 01)
So rules issue! Zakai Kinan (Mar 02)
Re: Snort Rules Availability Zakai Kinan (Feb 18)
Snort stats! Zakai Kinan (Jan 22)
Re: Barnyard install problem! Zakai Kinan (Mar 03)
Re: Flexresp problems Zakai Kinan (Feb 19)
Re: Memory issue! Zakai Kinan (Feb 14)
Re: DOS attacks Zakai Kinan (Mar 13)
Re: Barnyard install problem! Zakai Kinan (Mar 03)