Re: Any new Rules for Sheelshock/Bash Attacks?

[waldo kitty <wkitty42 () windstream net>]

On 9/25/2014 11:24 AM, Brook, S. Barrie wrote:
> Does anyone know if there are any of the current snort rules that address
> remote attempts to compromise systems that are vulnerable to the BASH
> vulnerability (Shellshock)?

yes there are such rules... they are from a different rules supplier than the 
VRT... they do a very good job of staying on top of *emerging threats* in the 
network world ;)

> And, are any new ones expected to be released today?

the ones i speak of were released yesterday IIRC... you'll find them over 
"*there*" if you follow the given hint ;)

-- 
  NOTE: No off-list assistance is given without prior approval.
        Please *keep mailing list traffic on the list* unless
        private contact is specifically requested and granted.

------------------------------------------------------------------------------
Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer
Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports
Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper
Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer
http://pubads.g.doubleclick.net/gampad/clk?id=154622311&iu=/4140/ostg.clktrk
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!