Snort: by date

• RSS Feed
• About List
• All Lists

Previous period

Next period

725 messages starting Mar 31 05 and ending Jun 30 05
Date index | Thread index | Author index

Thursday, 31 March

RE: Help with Rules Basselgia, Barry A Mr (NAF Atsugi)
RE: Snort ports? Escudero, Peter Louis
spec file update Florin Andrei

Friday, 01 April

Re: [SPAM] - system commands - Email found in subject gareth
Re: Snort IPS Functionality Michael Ray
Snort and Bridge utils jzorzi
Re: sfportscan - open ports Hin

Saturday, 02 April

How to enable XML Logging in Snort 2.3.2 Jitendra Gupta
How to enable XML Logging in Snort 2.3.2 Jitendra Gupta
Re: Snort in offline mode? Alex Kirk
bleedingsnort Alejandro Flores
Community Rule Update Alex Kirk
Snort false positives/false negatives web page??? Briggs, Bruce
Re: Snort false positives/false negatives web page Nigel Houghton
Snort in offline mode? Ramkumar Chinchani
Re: Snort in offline mode? Matt Kettler
New detection capabilities added... Martin Roesch
Re: New detection capabilities added... Theodore Stout
confused on rule sets with oinkmaster Rich Adamson
RE: bleedingsnort Harper, Patrick

Sunday, 03 April

Re: permission denied for accessing Mysql database Tomasz Piotr Palarz
BASE 1.1 release Kevin Johnson
Re: No Base with localhost/base in browser Mark Sargent

Monday, 04 April

event correlation/aggregation;extrusion detection Jochen Kaiser
Re: [Snort-devel] New detection capabilities added... Edin Dizdarevic
Re: bleedingsnort Matt Jonkman
RE: How to enable XML Logging in Snort 2.3.2 Jitendra Gupta
Re: Problems with base and postgresql Michael Stone
Re: Problems with base and postgresql Alejandro Flores
realplayer.playlist ?? Juan Fernandez
RE: BASE 1.1 release (Kevin Johnson) Mike Kelley
RE: BASE 1.1 release (Kevin Johnson) Mike Kelley
Re: RE: BASE 1.1 release (Kevin Johnson) Kevin Johnson
Re: sfportscan - open ports Jeremy Hewlett
/tmp/mysql.sock missing mr leokenzie
RE: BASE 1.1 release Basselgia, Barry A Mr (NAF Atsugi)
RE: BASE 1.1 release Kevin Johnson

Tuesday, 05 April

RE: How to enable XML Logging in Snort 2.3.2 Jitendra Gupta
RE: /tmp/mysql.sock missing Snort
Can Snort monitor multiple VLANs? Escudero, Peter Louis
RE: Can Snort monitor multiple VLANs? Peter Barton
RE: DOUBLE DECODING ATTACK Briggs, Bruce
RE: Can Snort monitor multiple VLANs? Escudero, Peter Louis
Re: Problems with base and postgresql Michael Stone
Re: Problems with base and postgresql Aaron Glenn
RE: Can Snort monitor multiple VLANs from a single box? Escudero, Peter Louis
Community Rule Update Alex Kirk
Re: Problems with base and postgresql Michael Stone
Re: Problems with base and postgresql Bamm Visscher
Re: Problems with base and postgresql Frank Knobbe
RE: Can Snort monitor multiple VLANs? Basselgia, Barry A Mr (NAF Atsugi)

Wednesday, 06 April

RE: How to enable XML Logging in Snort 2.3.2 Jitendra Gupta
Running multiple Barnyards (was Re: Can Snort monitor multiple VLANs?) Andrew R. Baker
unsubscribe me praveen kundurthi
Community Rules Jeff McCarthy
Honeynet Security Console 2.0 Released Jeff Dell
RE: unsubscribe me Harper, Patrick
RE: unsubscribe me Jeff Dell
BASE SID Lookup Dominic
Re: BASE 1.1 release Michael Stone
RE: Can Snort monitor multiple VLANs from a single box? Escudero, Peter Louis
RE: BASE SID Lookup Briggs, Bruce
Razorback Narayan Sivaramakrishnan
Unknown keyword ' ftpbounce' in rule Pachulski, Keith
Re: Unknown keyword ' ftpbounce' in rule Robert Bilbrey
Re: Unknown keyword ' ftpbounce' in rule Matthew Watchinski
RE: Unknown keyword ' ftpbounce' in rule Pachulski, Keith
Re: Unknown keyword ' ftpbounce' in rule Matthew Watchinski
DNS question mosquitooth
Re: Unknown keyword ' ftpbounce' in rule Jeremy Hewlett
Re: DNS question Matt Kettler
FlexResp settings Mr. venkat
RE: unsubscribe me M. Shirk
Re: DNS question mosquitooth
How come? mr leokenzie

Thursday, 07 April

FW: How come? mr leokenzie
RE: How come? Patrick Harper
Unable to connect to snort server by the sensor Jitendra Gupta
RE: How to enable XML Logging in Snort 2.3.2 Jitendra Gupta
RE: Unable to connect to snort server by the sensor Jitendra Gupta
RE: How to enable XML Logging in Snort 2.3.2 Jitendra Gupta
Sourcefire VRT Advisory - 2005-04-07 Nigel Houghton
RE: How to enable XML Logging in Snort 2.3.2 Jitendra Gupta
RE: Can Snort monitor multiple VLANs from a single box? Escudero, Peter Louis
New snortcenter/bleeding snort rule merge John Hally
RE: Unable to connect to snort server by the sensor Harper, Patrick
RE: Unable to connect to snort server by the sensor Jitendra Gupta
RE: Unable to connect to snort server by the sensor Harper, Patrick
RE: [SPAM] - RE: Unable to connect to snort server by the sensor - Email found in subject Marc Hering
RE: New snortcenter/bleeding snort rule merge Brian Jameson
Re: /tmp/mysql.sock missing Seth Art
How to start mysql prompt? mr leokenzie

Friday, 08 April

RE: [SPAM] - RE: Unable to connect to snort server by the sensor - Email found in subject Jitendra Gupta
RE: Unable to connect to snort server by the sensor Jitendra Gupta
RE: How to start mysql prompt? Harper, Patrick
RE: [SPAM] - RE: Unable to connect to snort server by the sensor - Email found in subject Marc Hering
RE: Unable to connect to snort server by the sensor Jitendra Gupta
Troubleshoot Snort Sensor Agent on RedHat9 Imran Imtiaz
Running multiple Barnyards -"Say What :-0" Jacob, Raymond A Jr
BASE 1.1.2 released Kevin Johnson

Saturday, 09 April

Re: Where does snort write it's errors to.? Mark Sargent
ERROR: Undefined variable name: (/etc/snort/rules/bad-traffic.rules:12): EXTERNAL_NET Mark Sargent
http normalization mosquitooth
RE: ERROR: Undefined variable name: (/etc/snort/rules/bad-traffic.rules:12): EXTERNAL_NET Briggs, Bruce
RE: http normalization Briggs, Bruce

Monday, 11 April

RE: Troubleshoot Snort Sensor Agent on RedHat9 Snort
Re: ERROR: Undefined variable name: (/etc/snort/rules/bad-traffic.rules:12): EXTERNAL_NET Paul Schmehl
Need help converting Snort 2.0 config to Snort 2.3 Bill Warren
Re: Need help converting Snort 2.0 config to Snort 2.3 Senthil Prabu.S

Tuesday, 12 April

Newbie: What does this mean? John Plate
newbie: http and uris Peter Schmitz
RE: Newbie: What does this mean? Briggs, Bruce
Sensor Problem Jitendra Gupta
snort 2.3.0 dies silently - running on LRP (Bering Leaf) t-wynnychenko
RE: Newbie: What does this mean? Briggs, Bruce
RE: snort 2.3.0 dies silently - running on LRP (Bering Leaf) Snort
Re: RE: Newbie: What does this mean? Sean Brown
RE: Newbie: What does this mean? Briggs, Bruce
Why content and not uricontent? Holger Mense

Wednesday, 13 April

Adding Snort Senors Jack A. Kanimea
RE: Sensor Problem Snort
snort 2.3.0 dies silently - running on LRP (Bering Leaf) Theodore Wynnychenko
BASE 1.1.2 Anthony J Placilla
RE: Newbie: What does this mean? John Plate
Re: Newbie: What does this mean? John Plate
RE: Newbie: What does this mean? Information Technology
IDScenter with newest Snort version Peter Rodger
Re: Why content and not uricontent? Brian
RE: IDScenter with newest Snort version Briggs, Bruce
Base 1.1.2 not displaying any information from the database Joseph Nicholson
newbie: http and uris mosquitooth
Re: newbie: http and uris Matt Kettler
Winsnort help needed! Peter Rodger
Adding Email Details in base Mark Sargent
Re: Adding Email Details in base James Riden
Re: Adding Email Details in base Mark Sargent
My Machine as Source Mark Sargent

Thursday, 14 April

Snort Rules Version Confusion Mark Sargent
FlexResp Mr. venkat
Re: Adding Email Details in base Kevin Johnson
Re: Snort Rules Version Confusion Rich Adamson
Problem getting a snort rule to work Pennell, Ronald B.
RE: My Machine as Source Briggs, Bruce
RE: Problem getting a snort rule to work Briggs, Bruce
RE: Winsnort help needed! Briggs, Bruce
RE: Winsnort help needed! Peter Rodger
Re: Snort Rules Version Confusion Paul Schmehl
Re: FlexResp Matt Kettler
RE: Winsnort help needed! Briggs, Bruce
RE: Winsnort help needed! Michael Steele
RE: Winsnort help needed! Peter Rodger
RE: Winsnort help needed! Michael Steele

Friday, 15 April

My BASE did not have any alerts mr leokenzie
nessus error mr leokenzie
suppression problem Hin
RE: Winsnort help needed! Peter Rodger
RE: Winsnort help needed! Briggs, Bruce
snort-2.3.2 installation on RH9 Peggy Kam
IDS Policy Manager 1.6.1 Released Jeff Dell
promiscuous mode in windows Mihai Petre
Re: promiscuous mode in windows Matt Kettler
Snort.org servers Martin Roesch

Saturday, 16 April

Re snort-2.3.2 installation on RH9 Jitendra Gupta
Re: My BASE did not have any alerts Kevin Johnson
Re: Winsnort help needed! Kevin Johnson
Odd Information Kevin Smith
RE: My BASE did not have any alerts Adam Kliarsky

Sunday, 17 April

RE: My BASE did not have any alerts Adam Kliarsky
Oinkmaster v1.2 released. Andreas Östling
RE: Odd Information Lee Clemens
RE: My BASE did not have any alerts Adam Kliarsky

Monday, 18 April

Redirect kill -10 output ahmim
Re: Redirect kill -10 output Dirk Geschke
management console hans
help in scripts Ks, Mithun (Corporate)
barnyard doesn't write on postgres database Mattia
Re: help in scripts Paul Schmehl
Retransmited packets Hin
Re: Retransmited packets Jeremy Hewlett
Snort Inline and alert logging Iñaki Rodríguez
Snort Startup Script dogbert
Re: Snort Startup Script Paul Schmehl
RE: My BASE did not have any alerts Adam Kliarsky

Tuesday, 19 April

barnyard doesn't write on postgres database Mattia
RE: Snort Startup Script Briggs, Bruce
RE: Snort Startup Script Paul Schmehl
missing TCP information Larry Wichman
Re: missing TCP information Larry Wichman
Snort Bugs snort user
New SFS Version Released Orit Vidas
Re: Snort Bugs Paul Halliday

Wednesday, 20 April

multiple snort instances and snortcenter John Hally
Re: multiple snort instances and snortcenter Wes Young
RE: My BASE did not have any alerts Adam Kliarsky
Re: Snort Bugs Jeremy Hewlett
RE: Snort Bugs Arseneault, Thomas (HQP)
Please Help me! How configure a span port in switch Cisco 6500 federico . juarez
Please Help me! How configure span port to work with encapsulation trunks federico . juarez
Re: Please Help me! How configure span port to work with encapsulation trunks Matt Kettler
Re: management console hans
restarting snort and archive move failed on base hans
RE: management console Briggs, Bruce

Thursday, 21 April

RE: multiple snort instances and snortcenter Brian Jameson
Re: Why content and not uricontent? Holger Mense
Re: Why content and not uricontent? Matt Kettler
Re: Why content and not uricontent? Holger Mense
Re: management console hans
FATAL ERROR: FLOWBITS ERROR: The number of flowbit IDs in the current ruleset exceed the maximum number of IDs that are allowed. Russell Fulton
Re: FATAL ERROR: FLOWBITS ERROR: The number of flowbit IDs in the current ruleset exceed the maximum number of IDs that are allowed. Frank Knobbe

Friday, 22 April

RE: management console Briggs, Bruce
"Best of breed" tools for Snort Tristan RHODES
Approximate bandwidth performance running Snort Tristan RHODES
Re: "Best of breed" tools for Snort Paul Schmehl
Re: Approximate bandwidth performance running Snort Matt Kettler
RE: Approximate bandwidth performance running Snort Arseneault, Thomas (HQP)
IDScenter David Naylor

Saturday, 23 April

mysql error Bilal Dar
RE: mysql error Patrick Harper
Snort 2.3.3 available Jeremy Hewlett

Sunday, 24 April

Re: Snort 2.3.3 available Eric Maheo

Monday, 25 April

snort 2.3.3 --enable-flexresp hans
Connection failed from Windows sensor to Linux Snort server Jitendra Gupta
Re: snort 2.3.3 --enable-flexresp John C. Silvia
Re: snort 2.3.3 --enable-flexresp Matt Kettler
Re: snort 2.3.3 --enable-flexresp Matt Kettler
(no subject) Patterson, Mike
RE: SnortALog error Patterson, Mike
Re: RE: SnortALog error Matt Kettler

Tuesday, 26 April

Connection failed from Windows sensor to Linux Snort server Jitendra Gupta
Re: (no subject) Paul Schmehl
Strange PATH MTU Traffic Joshua Berry
RE: Snort 2.3.3 available Harper, Patrick
New OSSRC Mailing List Alex Kirk
Re: (no subject) Matt Kettler
Re: Snort 2.3.3 available James Riden
Script to Parse Snort Rules Jeff Heckart
Re: snort 2.3.3 --enable-flexresp Rich Adamson
RE: [Snort-sigs] New OSSRC Mailing List Jeff Dell
Snort Testing tools Narayan Sivaramakrishnan
RE: Snort Testing tools Julius Turk
RE: Snort Testing tools Jeff Dell
easy update question Jason Benway
RE: easy update question Briggs, Bruce
Re: Connection failed from Windows sensor to Linux Snort server Jitendra Gupta
Interesting snort + mysql issue (kind of ODD) James Lay
Re: [Snort-sigs] New OSSRC Mailing List Alex Kirk
Rogue system detection John Hally
RE: Rogue system detection Bob Konigsberg
Re: Rogue system detection Harry Hoffman
Re: Rogue system detection Skip Carter
software for analyzing alerts Narayan Sivaramakrishnan
Re: software for analyzing alerts Tristan RHODES
adding another sensor Jason Benway
Re: adding another sensor James Riden
Re: easy update question Kevin Johnson
Barnyard documentation Tristan RHODES
Re: Barnyard documentation Paul Schmehl
RE: Strange PATH MTU Traffic larosa_vjay
RE: Strange PATH MTU Traffic larosa_vjay
Fedora Core Linux 3 -- Snort IDS Pradeep Aswani
RE: Fedora Core Linux 3 -- Snort IDS Patrick Harper

Wednesday, 27 April

RE: Fedora Core Linux 3 -- Snort IDS Pradeep Aswani
Re: adding another sensor Jason Benway
RE: Fedora Core Linux 3 -- Snort IDS Esler, Joel - Contractor
Snort on two load-balanced links (using SPAN on a Cisco 6500) Tristan RHODES
permissions denied error for alert log on new snort install Jason Benway
Re: Fedora Core Linux 3 -- Snort IDS Alejandro Flores
Syslog Priority Classification Peter Barton
RE: Fedora Core Linux 3 -- Snort IDS Pradeep Aswani
RE: [SPAM] - RE: Fedora Core Linux 3 -- Snort IDS - Email found in subject Marc Hering
Testing Snort with Blade IDS Informer Holger Mense
Re: Testing Snort with Blade IDS Informer Paul Schmehl
Re: Testing Snort with Blade IDS Informer Holger Mense
Re: Rogue system detection Skip Carter
Re: Testing Snort with Blade IDS Informer Holger Mense
Re: snort 2.3.3 --enable-flexresp hans
Re: snort 2.3.3 --enable-flexresp hans
Re: snort 2.3.3 --enable-flexresp hans
Re: restarting snort and archive move failed on base hans
Snort 2.3.3 and mysql logging Adam Kennedy
RE: [SPAM] - RE: Fedora Core Linux 3 -- Snort IDS - Email found in subject Pradeep Aswani

Thursday, 28 April

W32/Allim worm Biswas, Proneet
RE: Syslog Priority Classification Esler, Joel - Contractor
RE: W32/Allim worm Esler, Joel - Contractor
Re: Snort 2.3.3 and mysql logging Adam Kennedy
Re: Fedora Core Linux 3 -- Snort IDS Gregory D Hough
RE: [SPAM] - RE: Fedora Core Linux 3 -- Snort IDS - Email found in subject Paul Schmehl
RE: [SPAM] - RE: Fedora Core Linux 3 -- Snort IDS - Email found in subject Paul Schmehl
snort rules Alexander Economou
Re: snort rules Matt Kettler
Re: snort rules Tristan RHODES
Re: snort rules Paul Schmehl
Re: snort rules Matt Kettler

Friday, 29 April

Re: Snort 2.3.3 and mysql logging Matt Jonkman
Re:Snort2.3 Installation Problems Amper Sand
Updating two snort directories with oinkmaster v1.2? Rich Adamson
Problems with socket slice
Re: Problems with socket Anthony J Placilla
Barnyard and multiple snort instances John Hally
Re[2]: Problems with socket slice
Base 1.1.2 & Color code by Priority Peter Barton
Re[2]: Problems with socket slice
RE: Re[2]: Problems with socket Esler, Joel - Contractor
Re[4]: Problems with socket slice
Re: Problems with socket jacques brierre
Re[2]: Problems with socket slice
Re: Problems with socket Paul Schmehl
Re[2]: Problems with socket slice
Problem with socket slice
Re: Problem with socket Anthony J Placilla
Re[2]: Problem with socket slice
Re: Barnyard and multiple snort instances Alejandro Flores
Re: Re[2]: Problem with socket Paul Schmehl
Re: Re[2]: Problem with socket Anthony J Placilla
Re: Problem with socket John Creegan
Re: Base 1.1.2 & Color code by Priority Kevin Johnson
Problems with socket slice
Problems with socket slice

Saturday, 30 April

Problem with socket slice

Sunday, 01 May

Re: snort 2.3.3 --enable-flexresp hans

Monday, 02 May

BASE development list is public! Kevin Johnson
RHEL 4 / CentOS 4 papers released Patrick Harper
RE: RHEL 4 / CentOS 4 papers released Patrick Harper
base on debian NetExpress
Snort preprocessor Peggy Kam

Tuesday, 03 May

BASE shows blank page USO
Re: BASE shows blank page USO
Re: BASE shows blank page USO
Re: BASE shows blank page Kevin Johnson
Snort preprocessors test Peggy Kam
New User Group in Chicago - Meeting on 6/2 Jennifer Steffens
Problem installing Snort 2.3.3 Wayne Ho
SnortSAM + Snort 2.3.3 Xavier Cabrera
Re: SnortSAM + Snort 2.3.3 Frank Knobbe
RE: BASE shows blank page Michael Steele
Re: Problem installing Snort 2.3.3 Senthil Prabu.S
Re: [Snort-sigs] Possible improvements to pop3 rules. Jeff Kell

Wednesday, 04 May

remote snort sensor Raynaud, Francois
RE: Re: [Snort-sigs] Possible improvements to pop3 rules. Esler, Joel - Contractor
RE: Problem installing Snort 2.3.3 M. Shirk
Re: SnortSAM + Snort 2.3.3 Xavier Cabrera
Re: remote snort sensor Xavier Cabrera
RE: remote snort sensor Raynaud, Francois
ClamAV + Snort Xavier Cabrera
ClamAV + Snort Xavier Cabrera
Re: ClamAV + Snort Xavier Cabrera
Re: ClamAV + Snort Xavier Cabrera
Re: Problem installing Snort 2.3.3 Senthil Prabu.S
IP address format in database nadias

Thursday, 05 May

Re: IP address format in database Wes Young
How to Test Snort Rules jsa hssh
Setting snort in a network Narayan Sivaramakrishnan
RE: Setting snort in a network Briggs, Bruce

Sunday, 08 May

showing payload hans
Is possible to listen on DialUp interface? Bryce Stenberg

Monday, 09 May

snort inline configuration problems !!! Pradeep Aswani
CPU usage! mahboobeh soleimani
Re: CPU usage! Wes Young
RE: CPU usage! Esler, Joel - Contractor
Re: [Snort-sigs] Snort ClamAV for 2.3.3 Jason Haar
Re: Re: [Snort-sigs] Snort ClamAV for 2.3.3 Xavier Cabrera
Re: [Snort-sigs] Snort ClamAV for 2.3.3 Jason Haar
Stream/Packet Capture with Snort Paul Melson

Tuesday, 10 May

Snort Inline on 64-bit architecture lmarcilly
Re: Snort Inline on 64-bit architecture Dmitry Melekhov
Re: RE: SnortALog error jeremy . chartier
Re: IP address format in database Adam Pointon
Snort ClamAV for 2.3.3 Matt Jonkman
Missing Data - ACID Andrew Lacey
Re: [Snort-sigs] Snort ClamAV for 2.3.3 Erik Fichtner
RE: Stream/Packet Capture with Snort Paul Melson
Snorting OPTIONS method Gregory D Hough
perfmonitor preprocessor John Hally
RE: Stream/Packet Capture with Snort Paul Melson
RE: Snorting OPTIONS method Paul Melson
Re: Snort Inline on 64-bit architecture George Laiacona
Snort on XP SP2 W/ MSSQL James Bruce
RE: Snort on XP SP2 W/ MSSQL Briggs, Bruce
RE: Snort on XP SP2 W/ MSSQL Michael Steele
RE: perfmonitor preprocessor Basselgia, Barry A Mr (NAF Atsugi)
Re: Snorting OPTIONS method Gregory D Hough

Wednesday, 11 May

Snort install "manual" in french fathi.engineer
RE: New User Group in Chicago - Meeting on 6/2 McCash, John
Re: Stream/Packet Capture with Snort Marc Norton
Snort Preprocessors Sheppard Martin Contr AFRL/IFGA
Snort v2.3.3 Win32 is now up Jeremy Hewlett
Snort users meeting in Chicago Stef
Re: Stream/Packet Capture with Snort Richard Bejtlich
Re: Stream/Packet Capture with Snort Richard Bejtlich
Simple Snort Rule Help Pennell, Ronald B.
Re: Snort users meeting in Chicago Nigel Houghton
Re: New User Group in Chicago - Meeting on 6/2 Jennifer Steffens
Re: Simple Snort Rule Help Matt Kettler
Re: Snort users meeting in Chicago Jennifer Steffens
Re: Re: Snort users meeting in Chicago Stef
Issue with ClamAV preprocessor in snort-2.3.3 Jason Haar
Re: Issue with ClamAV preprocessor in snort-2.3.3 Victor Julien
Re: Issue with ClamAV preprocessor in snort-2.3.3 Will Metcalf
Re: New User Group in Chicago - Meeting Changed to 6/9 Jennifer Steffens
Re: Stream/Packet Capture with Snort Richard Bejtlich
Re: snort inline configuration problems !!! Will Metcalf

Thursday, 12 May

logrotate in mysql Ks, Mithun (Corporate)
Re: Issue with ClamAV preprocessor in snort-2.3.3 Jason Haar
bpf filter Dominic
RE: bpf filter Briggs, Bruce
Snort rss newsfeed Paul Schmehl
Re: bpf filter Matt Kettler
Re: [Snort-sigs] Snort ClamAV for 2.3.3 Will Metcalf

Sunday, 15 May

sensor drops packets ? Juan Fernandez
Snort IDMEF Plugin 2.0.0alpha released Sandro Poppi
Query on ClamAV preprocessor in snort-2.3.3 Jason Haar
Re: Query on ClamAV preprocessor in snort-2.3.3 Will Metcalf
Re: Query on ClamAV preprocessor in snort-2.3.3 Jason Haar

Monday, 16 May

Log snort alerts to a specific file Bahya NASSR EDDINE
Re: Log snort alerts to a specific file Daniel Purcell
Re: Log snort alerts to a specific file Bahya NASSR EDDINE
OT: monitoring specific traffic Rich Adamson
RE: OT: monitoring specific traffic Patrick Harper
RE: OT: monitoring specific traffic Basselgia, Barry A Mr (NAF Atsugi)
Re: sensor drops packets ? Matt Kettler
Smoe questions about Snort & ACID ! mahboobeh soleimani
Re: Smoe questions about Snort & ACID ! James Riden

Tuesday, 17 May

RE: Smoe questions about Snort & ACID ! Briggs, Bruce
Log everything in NIDS mode (yet not all packets are getting logged) Bryan Leavitt
Re: [Snort-sigs] Suggestions for new attack response rules Jennifer Steffens
Snort User Group at LinuxWorld NY Jennifer Steffens

Wednesday, 18 May

Question on the NetBIOS rules and port 445 in general Kevin Smith
uricontent.... Jeff Heckart
Re: uricontent.... Brian
Re: Question on the NetBIOS rules and port 445 in general Kevin Smith
Re: Question on the NetBIOS rules and port 445 in general Matt Kettler
snortcenter2 and rule update email John Hally
Re: snortcenter2 and rule update email Wes Young
"UDP flood rules" Dan Mahoney, System Admin

Thursday, 19 May

Calling all Bay Area Snort Users rich
Re: Calling all Bay Area Snort Users tfulton9909
Unsock Geries Handal
Winsnort Mattia
Re: Smoe questions about Snort & ACID ! Joel Esler
problem with restartsnort and ipcop 1.4.4 Mattia
RE: Winsnort Michael Steele

Friday, 20 May

Periodic DB Pruning Dan Mahoney, System Admin
RE: Periodic DB Pruning Patrick Harper
Winsnort Mattia
Again about Winsnort Mattia
Snort on XP SP2 W/ MSSQL James Bruce
RE: Winsnort Michael Steele
Re: Winsnort Jeremy Hewlett
RE: Winsnort Michael Steele

Saturday, 21 May

Why does Snort restart? mahboobeh soleimani
Re: Why does Snort restart? Paul Schmehl
Re: Why does Snort restart? Theodore Stout

Sunday, 22 May

Re: Why does Snort restart? Mohamed Eldesoky
Query Mukesh

Monday, 23 May

RE: Query Patrick Harper
BASE log in Narayan Sivaramakrishnan
Does BASE read output from sfportscan Bill Warren
Re: BASE log in Kevin Johnson
snorcenter2, Base, bleeding rules and sid-msg.map John Hally
snortcenter include commands East, Bill
Re: snorcenter2, Base, bleeding rules and sid-msg.map Wes Young
Acceptable packet loss? Byron Pezan
Re: Acceptable packet loss? Matt Kettler
Re: snorcenter2, Base, bleeding rules and sid-msg.map Joel Esler
Re: Acceptable packet loss? Joel Esler
Re: Acceptable packet loss? byte_jump

Tuesday, 24 May

Minimal hardware specification for a 10Mbps network Julien MEDINA
Re: snorcenter2, Base, bleeding rules and sid-msg.map Wes Young
Passive Ethernet Tap Rudi Starcevic
RE: Acceptable packet loss? Biswas, Proneet
SnortSMS Anthony J Placilla
Re: snortcenter include commands Jason Alexander
Wacky perfmonitor numbers Gary Richardson
RE: Wacky perfmonitor numbers Briggs, Bruce
Re: Wacky perfmonitor numbers Gary Richardson
Re: Wacky perfmonitor numbers Gary Richardson
Re: Wacky perfmonitor numbers Joel Esler
Re: Wacky perfmonitor numbers Gary Richardson
Snort pass rules... PlanAlpha
Alerts of the ICMP relationship with smtp connection? Paulo
Re: Snort pass rules... Matt Kettler
Re: Alerts of the ICMP relationship with smtp connection? Paulo
RE: snortcenter include commands East, Bill
Re: snortcenter include commands Joel Esler
Re: Alerts of the ICMP relationship with smtp connection? Matt Jonkman
Re: Wacky perfmonitor numbers Jeremy Hewlett
Re: SnortSMS M Raju
RE: SnortSMS Eric Hines

Wednesday, 25 May

writing virus signatures Siddhartha Jain
Paper Snort 2 on Windows 2003 Sunil Vakharia
Re: writing virus signatures Will Metcalf
Re: writing virus signatures Siddhartha Jain
Re: Wacky perfmonitor numbers Gary Richardson
Re: writing virus signatures Will Metcalf
Any way to change permissions of the unified output files? Rob Baxter
Re: Any way to change permissions of the unified output files? Bamm Visscher
BASE Updates and the way forward Joel Esler
Query abt Mysql Mukesh
Re: writing virus signatures Siddhartha Jain

Thursday, 26 May

Re: Query abt Mysql Senthil Prabu.S
Re: Query abt Mysql slice
IDS Policy Manager 1.6.2 Released Jeff Dell
sid-msg.map question Rich Adamson
very odd ! David Naylor
Re: very odd ! Matt Kettler
Re: very odd ! Kevin Reiter
RE: very odd ! David Naylor
sfportscan JJ Truax
sfportscan JJ Truax
Re: sfportscan Bryan Leavitt
Re: sfportscan JJ Truax

Friday, 27 May

Query about mysql Mukesh
Re: Query about mysql Guillaume Arcas
Re: Query about mysql Senthil Prabu.S
RE: snort and ODBC McCash, John
Re: BASE Updates and the way forward Joel Esler
Re: Query about mysql Joel Esler
Re: very odd ! Kevin Reiter
complicated snort rule interpretation. Rong-Tai Liu
RE: snort and ODBC Jonathan_Hays
Re: complicated snort rule interpretation. Matt Kettler
Re: sid-msg.map question Jeremy Hewlett

Saturday, 28 May

Re: sid-msg.map question Joel Esler
Web Traffic Analysis with Snort Mark Maxey

Monday, 30 May

Re: Alerts of the ICMP relationship with smtp connection? Paulo

Tuesday, 31 May

Re: Alerts of the ICMP relationship with smtp connection? Frank Knobbe
Query Mukesh
RE: Snort-users digest, Vol 1 #5138 - 1 msg Dennis Henderson
HTTP-Inspect / Stream4 Reassembly question Daniel Purcell
Re: HTTP-Inspect / Stream4 Reassembly question Will Metcalf
Snort startup richard
Re: Snort startup Jeff Kell
Re: Snort startup Dominik Gehl
Re: Snort startup richard
RE: Snort startup Briggs, Bruce
Re: HTTP-Inspect / Stream4 Reassembly question Daniel Purcell
Query Mukesh

Wednesday, 01 June

Re: Query Joel Esler
RE: Why snort doesn't log any packet? Smith, Ryan
Why snort doesn't log any packet? R. Thamrin
RE: Why snort doesn't log any packet? Michael Steele

Thursday, 02 June

error accessing snort database Sergio Carrilho
pid file creation Senthil Prabu.S
Re: error accessing snort database Joel Esler
packet modifications not working eboehnlein
Re: packet modifications not working Joel Esler
Re: packet modifications not working Will Metcalf

Friday, 03 June

problem with snort... tommy garsia

Saturday, 04 June

RE: problem with snort... Patrick Harper
RE: problem with snort... Patrick Harper
RE: problem with snort... Eric Maheo
Barnyard 0.2.0 Patch Colin Grady

Sunday, 05 June

Re: Snort startup Mohamed Eldesoky
Re: Snort startup Paul Schmehl

Monday, 06 June

Is Sourcefire/IDC's presentation, in Chicago, still "on" for June 9th? Stef
Re: Is Sourcefire/IDC's presentation, in Chicago, still "on" for June 9th? Jason
UDP/ICMP Pseudo Session Tracking (like Argus) Joshua Berry
acid/base recovery John Hally
Re: acid/base recovery Dominik Gehl
Re: acid/base recovery Joel Esler
RE: acid/base recovery John Hally
ERROR: Suppress-Parse: incorrect tracking type Aaron Giuoco
Base Graphs... Narayan Sivaramakrishnan
Snort Inline Xavier Cabrera
TCP PORTSCAN - log all packets? Daniel Rocha
Re: Snort Inline Victor Julien
Re: Base Graphs... Dominik Gehl
Re: Snort Inline Matt Kettler
Re: Is Sourcefire/IDC's presentation, in Chicago, still "on" for June 9th? Nigel Houghton
TCP PORTSCAN - log all packets? Daniel Rocha
Re: Alerts of the ICMP relationship with smtp connection? Paulo
create alert "full" log file from MySQL Nicky 69
Paul Clements is out of the office. Paul . Clements
TCP PORTSCAN - log all packets? Daniel Rocha
Re: TCP PORTSCAN - log all packets? Matt Kettler
Re: Snort Inline Xavier Cabrera
Re: TCP PORTSCAN - log all packets? Daniel Rocha
Re: Snort Inline Will Metcalf
Windows based IDS other then EagleX jsa hssh
Re: Snort Inline Xavier Cabrera
Re: Snort Inline Will Metcalf
Re: Snort Inline Xavier Cabrera
Re: Notification d'état de remise (échec) Daniel Rocha
Re: TCP PORTSCAN - log all packets? Daniel Rocha

Tuesday, 07 June

Re: Base Graphs... Joel Esler
Re: Re: Notification d'état de remise (échec) Joel Esler
running snort as packet logger and nids simultaneously Metal Gear
Re: running snort as packet logger and nids simultaneously Joel Esler
Re: running snort as packet logger and nids simultaneously Metal Gear
Re: running snort as packet logger and nids simultaneously Joel Esler
Re: running snort as packet logger and nids simultaneously Metal Gear
RE: Alerts of the ICMP relationship with smtp connection? Paulo
Re: running snort as packet logger and nids simultaneously Metal Gear
Re: running snort as packet logger and nids simultaneously Bamm Visscher
RE: Alerts of the ICMP relationship with smtp connection? Briggs, Bruce
RE: Base Graphs... Briggs, Bruce
RE: Alerts of the ICMP relationship with smtp connection? Paulo
Reminder: Chicago Snort User Group Meeting - 6/9/05 Jennifer Steffens
Anyone has rules to detect: W32/Mytob.br@MM Snortty
Re: Anyone has rules to detect: W32/Mytob.br@MM Dave C
RE: Alerts of the ICMP relationship with smtp connection? Briggs, Bruce
PortScan resets. Eduardo E. Silva
Free Inodes Dan Mahoney, System Admin
Snort Inline again.... Xavier Cabrera
Re: Free Inodes Jason

Wednesday, 08 June

Re: Free Inodes J-H Johansen
Re: running snort as packet logger and nids simultaneously Metal Gear
RE: Alerts of the ICMP relationship with smtp connection? Paulo
Re: Snort-users: PortScan resets Richard Bejtlich
Re: Free Inodes Dan Mahoney, System Admin
Re: Free Inodes Matt Kettler
Re: Re: TCP PORTSCAN - log all packets? Joel Esler
Re: Free Inodes Nigel Houghton

Thursday, 09 June

Iptables and snort inline lmarcilly
Re: Iptables and snort inline Victor Julien
Re: Re: Free Inodes Matt Kettler
Help w/ Bleeding Snort Rules on XP James Bruce
RE: Help w/ Bleeding Snort Rules on XP Michael Steele

Friday, 10 June

RE: Alerts of the ICMP relationship with smtp connection? Paulo
PXESnort Chas Tomlin
RE: Help w/ Bleeding Snort Rules on XP James Bruce

Saturday, 11 June

Unrecognized attack patterns against IIS Michael Scheidell
FW: Unrecognized attack patterns against IIS Michael Scheidell
Re: Unrecognized attack patterns against IIS TPanaitescu
Re: Unrecognized attack patterns against IIS TPanaitescu

Monday, 13 June

Port scans detected behind Firewall? James Bruce
Re: Port scans detected behind Firewall? Matt Kettler
BASE 1.1.3 release Kevin Johnson

Tuesday, 14 June

RE: DOUBLE DECODING ATTACK Venieris Yiannos
Hi Srinivas Katta
Re: Hi Joel Esler
Re: Hi Joel Esler
Re: Hi Matt Kettler
Re: Hi Joel Esler
RE: Hi Srinivas Katta
Re: Hi Matt Kettler
RE: Hi Srinivas Katta
RE: Spam:Re: Hi Ron Jenkins
Re: BASE 1.1.3 release jensen galan
Re: BASE 1.1.3 release Joel Esler
Re: BASE 1.1.3 release Kevin Johnson
Re: Hi Senthil Prabu.S

Wednesday, 15 June

X11 Rules: problem with snort-inline Flora.francesco
False positive rate in sfportscan Bjarte Malmedal
difficulty starting sensor Terry Morreale
Port scans behind Firewall? James Bruce
RE: Hi Pachulski, Keith
RE: Port scans behind Firewall? Paul Melson
RE: Hi Harper, Patrick
RE: Hi Srinivas Katta
pcre usage for inline Joel Esler
RE: pcre usage for inline Jeff Dell
Re: pcre usage for inline Joel Esler
RE: RE: [Snort-users] pcre usage for inline Joshua Berry
RE: RE: [Snort-users] pcre usage for inline Jeff Dell
Re: BASE 1.1.3 release jensen galan

Thursday, 16 June

Loophole and logmein Ron Jenkins
Constructing passive network tap Christian Volk
[http-inspect/SPNEGO] Gregory D Hough
Snort on Win98 Bogdan

Friday, 17 June

Strange snort behaviour, failure to log all traffic. hulver
Strange snort behaviour, failure to log all traffic - Solved. hulver
Preproc tuning Joel Esler
Re: Preproc tuning snort user
Re: Preproc tuning Joel Esler
Re: Preproc tuning snort user
Re: Preproc tuning Joel Esler
trouble with creating "schema" table in mysql5 Aleem Mawji

Saturday, 18 June

RE: BASE 1.1.3 release Michael Scheidell
Re: Snort-users digest, Vol 1 #5166 - 1 msg Nick Plante

Sunday, 19 June

Re: Preproc tuning Mohamed Eldesoky

Monday, 20 June

Re: trouble with creating "schema" table in mysql5 Wes Young
Re: [http-inspect/SPNEGO] Gregory D Hough

Tuesday, 21 June

snort-mysql sensors Mohamed Eldesoky
Re: snort-mysql sensors Joel Esler
RE: snort-mysql sensors Miner, Jonathan W (CSC) (US SSA)
Re: snort-mysql sensors Will Metcalf
Snort Rule to capture outbound email traffic Pennell, Ronald B.
Re: Snort Rule to capture outbound email traffic Frank Knobbe
IDS deployment scenarios David Naylor
OT: Recording IM sessions Chris Lyon
Re: OT: Recording IM sessions Joel Esler
Re: OT: Recording IM sessions Chris Lyon
Re: OT: Recording IM sessions Harry Hoffman
Re: OT: Recording IM sessions M. Shirk
RE: OT: Recording IM sessions Bristol, Gary L.
TRACE disable problem with AIX ian acces

Wednesday, 22 June

Re: snort-mysql sensors Mohamed Eldesoky
(snort_decoder) Unknown Datagram decoding problem! Mohamed Eldesoky
Re: OT: Recording IM sessions Alex Butcher, ISC/ISYS
Errors with simultaneous outputs in database Muad Dib
Re: OT: Recording IM sessions Chris Lyon
RE: OT: Recording IM sessions Paul Melson
Snort book Willy, Andrew
RE: OT: Recording IM sessions Schott, Erik J Mr ANOSC/FCBS
Re: OT: Recording IM sessions Chris Lyon
PF_RING question Dennis Henderson
Re: Snort book Joel Esler
Re: OT: Recording IM sessions Jason

Thursday, 23 June

Re: Errors with simultaneous outputs in database Muad Dib
RE: PF_RING question Milani Paolo
RE: PF_RING question Dennis Henderson
Re: Snort book snort user
RE: Snort book Willy, Andrew

Friday, 24 June

Re: Errors with simultaneous outputs in database Muad Dib
RE: Snort book Darren Webb

Saturday, 25 June

Cannot compile snort with mysql and flexresp[2] Kolanovic, Tomislav/Human Resources

Sunday, 26 June

Sourcefire Support for Snort Related Projects Jennifer Steffens

Monday, 27 June

testing IDS Geries Handal
IDS Policy Manager 1.7.0 Released Jeff Dell
Snort inline : Flowbits error lmarcilly
Use of the var HOME_NET in a DMZ Byron Pezan
Moving on... Jeremy Hewlett
Re: Snort inline : Flowbits error Martin Roesch
Re: testing IDS Martin Roesch

Tuesday, 28 June

Re: [Snort-devel] Moving on... Joel Esler
Re: Preproc tuning Martin Roesch
Unified Log Format Mario D. Santana
Re: Unified Log Format Martin Roesch
Re: Snort-users digest, Vol 1 #5178 - 4 msgs Nick Plante
Re: Unified Log Format Mario D. Santana

Thursday, 30 June

BASE SMTP Willy, Andrew
Re: BASE SMTP Joel Esler
First Meeting of the Open Source Snort Rules Consortium (OSSRC) Jennifer Steffens
Re: First Meeting of the Open Source Snort Rules Consortium (OSSRC) Jennifer Steffens

Previous period

Next period