Snort mailing list archives
Re: ClamAV preprocessor
From: Jose Maria Lopez <jkerouac () bgsec com>
Date: 10 Oct 2004 15:45:07 +0200
El jue, 07 de 10 de 2004 a las 15:51, Jackie Solomon escribió:
Greetings, I am trying to find a way to detect users on our network that have infected systems. We are a broadband ISP and need to be able to detect these problems to take appropriate action to protect the network bandwidth. Is there a procedure to incorporating ClamAV with Snort? Thanks! Jackie Solomon
The last version of snort-inline that I have downloaded and installed have a section in the config file for ClamAV, so I suppose it should work. I don't know if the last version of snort have the same funcionality. -- Jose Maria Lopez Hernandez Director Tecnico de bgSEC jkerouac () bgsec com bgSEC Seguridad y Consultoria de Sistemas Informaticos http://www.bgsec.com ESPAÑA The only people for me are the mad ones -- the ones who are mad to live, mad to talk, mad to be saved, desirous of everything at the same time, the ones who never yawn or say a commonplace thing, but burn, burn, burn like fabulous yellow Roman candles. -- Jack Kerouac, "On the Road" ------------------------------------------------------- This SF.net email is sponsored by: IT Product Guide on ITManagersJournal Use IT products in your business? Tell us what you think of them. Give us Your Opinions, Get Free ThinkGeek Gift Certificates! Click to find out more http://productguide.itmanagersjournal.com/guidepromo.tmpl _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Re: ClamAV preprocessor Jackie Solomon (Oct 07)
- Re: ClamAV preprocessor Will Metcalf (Oct 07)
- Re: ClamAV preprocessor Jose Maria Lopez (Oct 10)