NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > FOCUS-IDS> 2003-q1

Most recent messages
343 messages sorted by: [ author ] [ thread ] [ subject ]

Starting: Thu Jan 02 2003 - 10:53:20 CST
Ending: Mon Mar 31 2003 - 11:30:09 CST

Re: OSEC [WAS: Re: Intrusion Prevention] Marcus J. Ranum (Mon Dec 30 2002 - 22:34:13 CST)
Voice over IP applications vulnerabilites/attacks ? Avi Chesla (Thu Jan 02 2003 - 11:14:16 CST)
RE: Voice over IP applications vulnerabilites/attacks ? Paul D. Scallan, Jr. (Thu Jan 02 2003 - 12:02:35 CST)
RE: Voice over IP applications vulnerabilites/attacks ? Paul D. Scallan, Jr. (Thu Jan 02 2003 - 12:13:48 CST)
RE: Voice over IP applications vulnerabilites/attacks ? Keith Stewart (Thu Jan 02 2003 - 16:03:58 CST)
RE: Voice over IP applications vulnerabilites/attacks ? Paul D. Scallan, Jr. (Thu Jan 02 2003 - 16:33:29 CST)
Re: Voice over IP applications vulnerabilities/attacks? Chris Tobkin (Thu Jan 02 2003 - 18:33:42 CST)
Re: OSEC [WAS: Re: Intrusion Prevention] Randy Taylor (Fri Jan 03 2003 - 09:09:08 CST)
RE: Voice over IP applications vulnerabilites/attacks ? Brennen Reynolds (Fri Jan 03 2003 - 17:37:42 CST)
Re: Voice over IP applications vulnerabilites/attacks ? Talisker (Mon Jan 06 2003 - 12:15:15 CST)
Re: OSEC [WAS: Re: Intrusion Prevention] George Capehart (Sat Jan 04 2003 - 12:48:25 CST)
Intrusion Risk Assessment Robert_Huber_at_bankone.com (Mon Jan 06 2003 - 11:54:02 CST)
IDS Common Criteria Talisker (Mon Jan 06 2003 - 12:13:58 CST)
RE: Intrusion Risk Assessment Rob Shein (Mon Jan 06 2003 - 18:35:42 CST)
RE: Intrusion Risk Assessment Alan Shimel (Mon Jan 06 2003 - 14:58:20 CST)
RE: IDS Common Criteria Greenspan, Howard (Tue Jan 07 2003 - 10:25:16 CST)
Re: [IDS] IDS Common Criteria Frederick M Avolio (Tue Jan 07 2003 - 08:15:13 CST)
RE: Intrusion Prevention Golomb, Gary (Mon Jan 06 2003 - 15:07:44 CST)
Linux Honeyd Toolkit Lance Spitzner (Tue Jan 07 2003 - 08:40:16 CST)
Re: Intrusion Risk Assessment Fernando Cardoso (Tue Jan 07 2003 - 03:58:19 CST)
RE: IDS Common Criteria Greg van der Gaast (Tue Jan 07 2003 - 02:19:40 CST)
RE: IDS Common Criteria Alan Shimel (Mon Jan 06 2003 - 14:53:28 CST)
Re: [IDS] IDS Common Criteria Randy Taylor (Mon Jan 06 2003 - 21:32:28 CST)
RE: Intrusion Risk Assessment Robert Buckley (Tue Jan 07 2003 - 11:32:20 CST)
RE: IDS Common Criteria Joseph M Hoffman (Tue Jan 07 2003 - 14:12:27 CST)
FW: Intrusion Risk Assessment Peter Schwarz (Tue Jan 07 2003 - 11:39:28 CST)
Re: Intrusion Risk Assessment Herve Debar (Tue Jan 07 2003 - 07:01:19 CST)
Re: [IDS] IDS Common Criteria Randy Taylor (Tue Jan 07 2003 - 14:22:38 CST)
Re: [IDS] IDS Common Criteria Randy Taylor (Tue Jan 07 2003 - 15:49:53 CST)
Re: [IDS] IDS Common Criteria Frederick M Avolio (Tue Jan 07 2003 - 15:04:21 CST)
Re: [IDS] IDS Common Criteria Talisker (Tue Jan 07 2003 - 17:00:24 CST)
Re: [IDS] IDS Common Criteria Randy Taylor (Tue Jan 07 2003 - 17:49:52 CST)
IDS Stealth Mode r)(o)(m (Wed Jan 08 2003 - 08:39:55 CST)
re[2]: Intrusion Risk Assessment Richard Bennison (Wed Jan 08 2003 - 10:52:05 CST)
RE: [IDS] IDS Common Criteria Greg van der Gaast (Wed Jan 08 2003 - 08:14:40 CST)
RE: Intrusion Risk Assessment Nicole Nicholson (Wed Jan 08 2003 - 11:11:16 CST)
Linux Snort-Inline Toolkit Lance Spitzner (Wed Jan 08 2003 - 11:02:32 CST)
AW: [IDS] IDS Common Criteria detmar.liesen_at_lds.nrw.de (Wed Jan 08 2003 - 02:11:42 CST)
Re: IDS Stealth Mode Kurt Seifried (Wed Jan 08 2003 - 19:09:17 CST)
RE: Intrusion Prevention Graham Field (Wed Jan 08 2003 - 19:50:40 CST)
hel anderson lee (Wed Jan 08 2003 - 20:45:07 CST)
IDS Assessment (was: Intrusion Prevention... probably something else at one point) Golomb, Gary (Wed Jan 08 2003 - 23:01:14 CST)
re[2]: Intrusion Risk Assessment Ron Gula (Wed Jan 08 2003 - 22:33:49 CST)
Re: IDS Stealth Mode M. Dodge Mumford (Wed Jan 08 2003 - 19:39:48 CST)
RE: VA/IDS Integration (Was: RE: re[2]: Intrusion Risk Assessment) David J. Meltzer (Fri Jan 10 2003 - 09:53:55 CST)
Re: IDS Stealth Mode Talisker (Thu Jan 09 2003 - 02:59:43 CST)
Re: IDS Stealth Mode Dave Mitchell (Thu Jan 09 2003 - 09:30:58 CST)
Re: IDS Stealth Mode Matt Harris (Thu Jan 09 2003 - 08:34:47 CST)
Testing Manifestos [WAS: OSEC, ICSA, Cats and Dogs, etc.] Greg Shipley (Fri Jan 10 2003 - 00:39:55 CST)
RE: IDS Stealth Mode Aditya (Fri Jan 10 2003 - 01:00:34 CST)
Re: backdoor detection lucy lee (Sat Jan 11 2003 - 20:12:20 CST)
RE: [IDS] IDS Common Criteria Graham, Robert (ISS Atlanta) (Fri Jan 10 2003 - 18:14:53 CST)
Re: IDS Stealth Mode Jonas Eriksson (Sun Jan 12 2003 - 12:40:38 CST)
RE: [IDS] IDS Common Criteria Randy Taylor (Mon Jan 13 2003 - 09:27:11 CST)
Snort-Inline drop rulebase mike_at_honeynet.org (Mon Jan 13 2003 - 17:14:13 CST)
RE: Voice over IP applications vulnerabilites/attacks ? Avi Chesla (Tue Jan 14 2003 - 07:00:55 CST)
how to verify whether an attack attempt is successful? Yan Zhai (Mon Jan 13 2003 - 10:59:49 CST)
RE: Intrusion Prevention Brian Laing (Tue Jan 14 2003 - 13:48:44 CST)
Re: tcp overlap fr0ck9 (Mon Jan 13 2003 - 13:16:31 CST)
Call For Papers -- RAID 2003 Joshua Haines (Tue Jan 14 2003 - 16:13:39 CST)
Re: how to verify whether an attack attempt is successful? Huagang XIE (Wed Jan 15 2003 - 18:45:32 CST)
Re: tcp overlap Jon Gary (Wed Jan 15 2003 - 14:46:49 CST)
Re: how to verify whether an attack attempt is successful? Jose Nazario (Wed Jan 15 2003 - 12:51:39 CST)
RE: [IDS] IDS Common Criteria Randy Taylor (Wed Jan 15 2003 - 12:09:31 CST)
Re: how to verify whether an attack attempt is successful? Kurt Seifried (Wed Jan 15 2003 - 15:27:19 CST)
RE: how to verify whether an attack attempt is successful? detmar.liesen_at_lds.nrw.de (Thu Jan 16 2003 - 01:28:25 CST)
RE: [IDS] IDS Common Criteria Graham, Robert (ISS Atlanta) (Fri Jan 17 2003 - 12:37:07 CST)
Re: how to verify whether an attack attempt is successful? Yan Zhai (Wed Jan 15 2003 - 16:32:43 CST)
Re: IDS Stealth Mode Frank Knobbe (Tue Jan 14 2003 - 22:43:31 CST)
RE: [IDS] IDS Common Criteria Rob Shein (Wed Jan 15 2003 - 09:42:34 CST)
RE: how to verify whether an attack attempt is successful? David J. Meltzer (Fri Jan 17 2003 - 11:08:56 CST)
RE: how to verify whether an attack attempt is successful? Ron Gula (Fri Jan 17 2003 - 11:08:19 CST)
RE: how to verify whether an attack attempt is successful? Maher Odeh (Wed Jan 15 2003 - 16:05:42 CST)
RE: [IDS] IDS Common Criteria Foster, Douglas (Fri Jan 17 2003 - 21:21:21 CST)
RE: how to verify whether an attack attempt is successful? Robert_Huber_at_bankone.com (Wed Jan 15 2003 - 14:02:28 CST)
Re: IDS Stealth Mode Joshua Krage (Mon Jan 13 2003 - 21:15:42 CST)
RE: Intrusion Risk Assessment Fengmin Gong (Tue Jan 14 2003 - 13:02:36 CST)
RE: [IDS] IDS Common Criteria Parnelli Vondel (Fri Jan 17 2003 - 23:41:59 CST)
RE: how to verify whether an attack attempt is successful? Metcalfe, Greg (Wed Jan 15 2003 - 12:56:51 CST)
Re: tcp overlap Thomas H. Ptacek (Wed Jan 15 2003 - 15:36:14 CST)
Active response... some thoughts. Abe L. Getchell (Thu Jan 16 2003 - 12:37:11 CST)
RE: IDS Stealth Mode Brito, Nelson (ISS Brazil) (Thu Jan 09 2003 - 07:00:59 CST)
Re: how to verify whether an attack attempt is successful? Scott Wimer (Fri Jan 17 2003 - 10:46:01 CST)
RE: [IDS] IDS Common Criteria Graham, Robert (ISS Atlanta) (Wed Jan 15 2003 - 13:03:29 CST)
Re: IDS Stealth Mode Matt Simmons (Thu Jan 09 2003 - 07:48:32 CST)
interface-mirroring on a server detmar.liesen_at_lds.nrw.de (Fri Jan 10 2003 - 02:39:28 CST)
RE: Intrusion Risk Assessment Fengmin Gong (Sat Jan 18 2003 - 16:16:04 CST)
RE: [IDS] IDS Common Criteria Disco Godfather (Tue Jan 21 2003 - 06:14:53 CST)
RE: Active response... some thoughts. Abe L. Getchell (Tue Jan 21 2003 - 13:02:50 CST)
RE: [IDS] IDS Common Criteria Randy Taylor (Wed Jan 22 2003 - 13:32:59 CST)
AW: Active response... some thoughts. detmar.liesen_at_lds.nrw.de (Tue Jan 21 2003 - 01:17:06 CST)
Re: Active response... some thoughts. Ron Gula (Mon Jan 20 2003 - 22:01:07 CST)
RE: interface-mirroring on a server sstover (Wed Jan 22 2003 - 08:16:24 CST)
Re: IDS Stealth Mode Matt Simmons (Thu Jan 09 2003 - 07:48:32 CST)
RE: Active response... some thoughts. sstover (Thu Jan 23 2003 - 12:45:17 CST)
RE: Active response... some thoughts. Kohlenberg, Toby (Thu Jan 23 2003 - 19:45:07 CST)
RE: Active response... some thoughts. Abe L. Getchell (Fri Jan 24 2003 - 00:17:04 CST)
NetScreen IDS (X-post) Ralph Los (Fri Jan 24 2003 - 11:48:49 CST)
RE: Active response... some thoughts. Ralph Los (Fri Jan 24 2003 - 11:38:53 CST)
IDS Terminology Talisker (Fri Jan 24 2003 - 12:29:41 CST)
Re: Active response... some thoughts. Martin Roesch (Sat Jan 25 2003 - 22:27:36 CST)
RE: Active response... some thoughts. Christopher Lyon (Sun Jan 26 2003 - 02:58:10 CST)
new on IDSs Vladimir (Sun Jan 26 2003 - 05:10:49 CST)
RE: Active response... some thoughts. Shashank Rai (Sun Jan 26 2003 - 22:17:49 CST)
RE: Active response... some thoughts. Alan Shimel (Sun Jan 26 2003 - 22:45:14 CST)
RE: Active response... some thoughts. mb_lima (Mon Jan 27 2003 - 04:43:28 CST)
RE: new on IDSs Bawcom, Aaron (Mon Jan 27 2003 - 10:23:49 CST)
RE: new on IDSs Omar Herrera (Sun Jan 26 2003 - 23:31:02 CST)
Know Your Enemy: Learning with VMware Lance Spitzner (Mon Jan 27 2003 - 11:40:51 CST)
Re: new on IDSs David W. Goodrum (Mon Jan 27 2003 - 12:33:42 CST)
Re: Active response... some thoughts. Talisker (Mon Jan 27 2003 - 13:10:06 CST)
Re: NetScreen IDS (X-post) Jordan K Wiens (Mon Jan 27 2003 - 13:21:44 CST)
Re: new on IDSs (Context-awareness in IDSes) Umesh Shankar (Mon Jan 27 2003 - 18:00:26 CST)
RE: Active response... some thoughts. Kohlenberg, Toby (Mon Jan 27 2003 - 19:26:59 CST)
VDS FAQ - request for feedback David J. Meltzer (Mon Jan 27 2003 - 18:27:30 CST)
UTF-16 and premature request ending evasion Cox, Michael (Tue Jan 28 2003 - 09:25:23 CST)
Re: NetScreen IDS (X-post) Jordan K Wiens (Tue Jan 28 2003 - 10:23:57 CST)
RE: Active response... some thoughts. Garbrecht, Frederick (Tue Jan 28 2003 - 10:31:18 CST)
WINDUMP SYNTAX ASSISTANCE..... Jason Beauford (Tue Jan 28 2003 - 11:27:26 CST)
RE: Active response... some thoughts. Kohlenberg, Toby (Tue Jan 28 2003 - 11:55:37 CST)
RE: tcp overlap Rob Shein (Tue Jan 28 2003 - 12:31:13 CST)
RE: Active response... some thoughts. mb_lima (Tue Jan 28 2003 - 12:19:49 CST)
RE: tcp overlap Umesh Shankar (Tue Jan 28 2003 - 13:29:24 CST)
SQL effect on stateful IDS and firewalls Todd Heberlein (Tue Jan 28 2003 - 17:31:35 CST)
Did IDSes detect the SQL worm? Todd Heberlein (Tue Jan 28 2003 - 17:41:40 CST)
IDS security testing training Pete Herzog (Wed Jan 29 2003 - 03:27:17 CST)
RE: Active response... some thoughts. Frank Knobbe (Wed Jan 29 2003 - 11:08:35 CST)
RE: WINDUMP SYNTAX ASSISTANCE..... Bill Martin (Wed Jan 29 2003 - 01:09:52 CST)
Re: Active response... some thoughts. Todd Heberlein (Tue Jan 28 2003 - 17:24:32 CST)
Snort-Inline and worm containment Tom McLaughlin (Tue Jan 28 2003 - 20:19:17 CST)
RE: Active response... some thoughts. Steven Richards (Tue Jan 28 2003 - 22:35:48 CST)
Re: Active response... some thoughts. Sangram (Tue Jan 28 2003 - 22:03:23 CST)
SQLSlammer Worm & IDSs Andrew Plato (Tue Jan 28 2003 - 16:49:21 CST)
RE: Did IDSes detect the SQL worm? Stan Burditzman (Wed Jan 29 2003 - 11:38:38 CST)
RE: Did IDSes detect the SQL worm? Cathleen_M_Brackin_at_bankone.com (Wed Jan 29 2003 - 12:04:52 CST)
Re: SQL effect on stateful IDS and firewalls Gianni Tedesco (Wed Jan 29 2003 - 11:33:03 CST)
Gig TAPs Garritano,Robert (Wed Jan 29 2003 - 11:38:33 CST)
Re: Did IDSes detect the SQL worm? Matt Bing (Wed Jan 29 2003 - 11:34:02 CST)
Re: Did IDSes detect the SQL worm? Scott C. Kennedy (Wed Jan 29 2003 - 11:52:22 CST)
RE: Active response... some thoughts. Brian Laing (Wed Jan 29 2003 - 12:12:15 CST)
Re: Active response... some thoughts. mb_lima (Wed Jan 29 2003 - 12:45:39 CST)
Re: SQLSlammer Worm & IDSs kyle.r.maxwell_at_verizon.com (Wed Jan 29 2003 - 13:09:36 CST)
RE: Did IDSes detect the SQL worm? Gonzalez, Albert (Wed Jan 29 2003 - 13:15:14 CST)
RE: SQLSlammer Worm & IDSs Thierry Evangelista (Wed Jan 29 2003 - 13:47:52 CST)
Re: IDS security testing training Jason Falciola (Wed Jan 29 2003 - 13:55:21 CST)
Re: SQLSlammer Worm & IDSs Talisker (Wed Jan 29 2003 - 15:30:55 CST)
Re: Active response... some thoughts. Paul Palmer (Wed Jan 29 2003 - 16:32:27 CST)
Re: VDS FAQ - request for feedback David W. Goodrum (Wed Jan 29 2003 - 16:52:21 CST)
Re: Snort-Inline and worm containment Lance Spitzner (Wed Jan 29 2003 - 17:21:33 CST)
Re: SQLSlammer Worm & IDSs Mike Barkett (Wed Jan 29 2003 - 17:31:54 CST)
Re: Snort-Inline and worm containment Shaiful (Wed Jan 29 2003 - 18:29:46 CST)
RE: SQLSlammer Worm & IDSs Zach Forsyth (Wed Jan 29 2003 - 21:27:54 CST)
Re: Active response... some thoughts. Stone Cold (Thu Jan 30 2003 - 03:57:05 CST)
RE: Snort-Inline and worm containment Rob Shein (Thu Jan 30 2003 - 11:13:04 CST)
RE: Active response... some thoughts. Rob Shein (Thu Jan 30 2003 - 11:17:14 CST)
Re: Did IDSes detect the SQL worm? Kurt Seifried (Thu Jan 30 2003 - 15:06:51 CST)
Sapphire worm and Real Secure Server Sensor supersekuritydude_at_hushmail.com (Thu Jan 30 2003 - 13:52:18 CST)
RE: Did IDSes detect the SQL worm? Garritano,Robert (Fri Jan 31 2003 - 10:04:09 CST)
Re: Gig TAPs Jim McMurry (Thu Jan 30 2003 - 13:27:22 CST)
RE: IDS security testing training Peter Schawacker (Fri Jan 31 2003 - 10:19:45 CST)
Re: Did IDSes detect the SQL worm? Bandar Alzaaidi (Thu Jan 30 2003 - 14:27:13 CST)
Re: Active response... some thoughts. mb_lima (Fri Jan 31 2003 - 10:34:34 CST)
Re: Gig TAPs Talisker (Thu Jan 30 2003 - 14:27:38 CST)
RE: IDS security testing training Young, Keith (Fri Jan 31 2003 - 10:11:01 CST)
RE: Snort-Inline and worm containment Ken Smith (Fri Jan 31 2003 - 10:46:41 CST)
RE: VDS FAQ - request for feedback David J. Meltzer (Fri Jan 31 2003 - 10:43:30 CST)
RE: Active response... some thoughts. Brian Laing (Fri Jan 31 2003 - 13:56:17 CST)
Re: Did IDSes detect the SQL worm? Scott C. Kennedy (Fri Jan 31 2003 - 13:01:51 CST)
Re: Active response... some thoughts. Chris Travers (Fri Jan 31 2003 - 12:22:58 CST)
RE: Gig TAPs Peter Schawacker (Fri Jan 31 2003 - 13:07:43 CST)
Re: Gig TAPs Aaron Turner (Fri Jan 31 2003 - 13:21:15 CST)
Re: Gig TAPs Talisker (Fri Jan 31 2003 - 14:09:34 CST)
RE: Did IDSes detect the SQL worm? Chmielarski TOM-ATC090 (Fri Jan 31 2003 - 15:04:14 CST)
how to detect http tunnel? bobr_at_guru.virtual.sk (Mon Feb 03 2003 - 07:43:00 CST)
Costs of a compromise related to the detection time Konrad Rieck (Mon Feb 03 2003 - 08:35:17 CST)
snort-inline inbound ruleset? John Flynn (Sun Feb 02 2003 - 12:09:20 CST)
RE: Did IDSes detect the SQL worm? Terence Runge (Mon Feb 03 2003 - 10:25:04 CST)
Re: Costs of a compromise related to the detection time Scott Wimer (Mon Feb 03 2003 - 11:08:35 CST)
Re: Active response... some thoughts. Scott Wimer (Mon Feb 03 2003 - 11:16:45 CST)
Re: snort-inline inbound ruleset? Lance Spitzner (Mon Feb 03 2003 - 11:41:37 CST)
RE: Gig TAPs Bawcom, Aaron (Mon Feb 03 2003 - 12:07:36 CST)
RE: Gig TAPs Peter Schawacker (Mon Feb 03 2003 - 12:13:59 CST)
RE: snort-inline inbound ruleset? Gonzalez, Albert (Mon Feb 03 2003 - 12:38:17 CST)
RE: Active response... some thoughts. Gonzalez, Albert (Mon Feb 03 2003 - 12:50:41 CST)
Re: Gig TAPs Talisker (Mon Feb 03 2003 - 13:41:26 CST)
Re: Active response... some thoughts. Ali Saifullah Khan (Mon Feb 03 2003 - 13:18:15 CST)
Network Tap Technology (was: RE: Gig TAPs) robert.d.turner_at_bt.com (Wed Feb 05 2003 - 16:17:40 CST)
Re: how to detect http tunnel? Kurt Seifried (Mon Feb 03 2003 - 19:44:31 CST)
Re: Gig TAPs Bennett Todd (Mon Feb 03 2003 - 13:46:52 CST)
IDScenter 1.1 rc1 released Kistler Ueli (Tue Feb 04 2003 - 17:44:17 CST)
Re: Active response... some thoughts. Thomas H. Ptacek (Tue Feb 04 2003 - 11:57:42 CST)
Protocol Anomaly Detection IDS Michael L. Artz (Tue Feb 04 2003 - 22:07:02 CST)
sniffer detection on switched based networks Sangram (Tue Feb 04 2003 - 23:01:35 CST)
Eagle X 1.0 release Kistler Ueli (Tue Feb 04 2003 - 17:45:41 CST)
Re: Active response... some thoughts. Chris Travers (Wed Feb 05 2003 - 01:16:08 CST)
Re: Active response... some thoughts. fr0ck9 (Wed Feb 05 2003 - 16:42:14 CST)
RE: Active response... some thoughts. Rob McMillen (Wed Feb 05 2003 - 17:10:23 CST)
Re: sniffer detection on switched based networks Rob McMillen (Wed Feb 05 2003 - 17:13:13 CST)
RE: Protocol Anomaly Detection IDS Graham, Robert (ISS Atlanta) (Wed Feb 05 2003 - 18:14:25 CST)
Re: sniffer detection on switched based networks Brett Harris (Wed Feb 05 2003 - 19:00:23 CST)
RE: Active response... some thoughts. Pete Herzog (Thu Feb 06 2003 - 08:54:06 CST)
RE: Active response... some thoughts. Abe L. Getchell (Thu Feb 06 2003 - 09:55:42 CST)
RE: Protocol Anomaly Detection IDS Adam Powers (Thu Feb 06 2003 - 10:14:23 CST)
RE: sniffer detection on switched based networks Angel Rivera (Thu Feb 06 2003 - 08:26:58 CST)
Re: Protocol Anomaly Detection IDS Jordan K Wiens (Thu Feb 06 2003 - 12:23:06 CST)
Method to the Madness: Anomaly & Signature Redux Pete Lindstrom (Thu Feb 06 2003 - 13:05:29 CST)
RE: Active response... some thoughts. Ralph Los (Thu Feb 06 2003 - 23:41:22 CST)
RE: Active response... some thoughts. Ralph Los (Thu Feb 06 2003 - 23:51:35 CST)
RE: Active response... some thoughts. Rob Shein (Fri Feb 07 2003 - 14:48:44 CST)
Re: Active response... some thoughts. andre (Sat Feb 08 2003 - 15:50:21 CST)
Re: Active response... some thoughts. SecurityFocus (Fri Feb 07 2003 - 15:30:53 CST)
RE: Protocol Anomaly Detection IDS Andrew Plato (Fri Feb 07 2003 - 20:07:54 CST)
Re: Active response... some thoughts. Frank Knobbe (Sat Feb 08 2003 - 18:32:13 CST)
WLAN IDS Will Schmied (Sat Feb 08 2003 - 20:29:03 CST)
new Q signature Jon (Mon Feb 10 2003 - 13:53:11 CST)
Re: [Snort-sigs] new Q signature Jon (Mon Feb 10 2003 - 15:43:08 CST)
Re: [Snort-sigs] new Q signature Jason (Mon Feb 10 2003 - 16:50:01 CST)
Re: [Snort-sigs] new Q signature Jon (Mon Feb 10 2003 - 19:02:05 CST)
RE: [Snort-sigs] new Q signature Hall, Andrew (DPRS) (Mon Feb 10 2003 - 15:17:14 CST)
Re: Protocol Anomaly Detection IDS Martin Roesch (Mon Feb 10 2003 - 20:04:52 CST)
Re: WLAN IDS planz (Mon Feb 10 2003 - 22:56:39 CST)
Re: Active response... some thoughts. mb_lima (Tue Feb 11 2003 - 04:06:53 CST)
Re: Protocol Anomaly Detection IDS Yaakov Yehudi (Tue Feb 11 2003 - 02:12:59 CST)
RE: Active response... some thoughts. Rob Shein (Tue Feb 11 2003 - 11:06:23 CST)
Re: Protocol Anomaly Detection IDS Frank Knobbe (Tue Feb 11 2003 - 14:17:17 CST)
Traffic logs to help with IDS testing and development Brennen Reynolds (Mon Feb 10 2003 - 19:17:32 CST)
Re: Traffic logs to help with IDS testing and development SCC (Tue Feb 11 2003 - 17:51:44 CST)
RE: Active response... some thoughts. Steven Richards (Tue Feb 11 2003 - 22:30:33 CST)
RE: Protocol Anomaly Detection IDS Sonit Jain (Wed Feb 12 2003 - 04:10:36 CST)
Triangulating packets Rodrigo Buarque Ramos (Wed Feb 12 2003 - 07:51:41 CST)
RE: WLAN IDS Rob Shein (Wed Feb 12 2003 - 10:10:39 CST)
Re: Triangulating packets Dener Martins (Wed Feb 12 2003 - 11:38:06 CST)
slow scans? Anton Chuvakin (Wed Feb 12 2003 - 12:46:41 CST)
Re: slow scans? Johannes Ullrich (Wed Feb 12 2003 - 13:15:21 CST)
Re: slow scans? Ron Gula (Wed Feb 12 2003 - 13:30:15 CST)
Re: slow scans? Anton Chuvakin (Wed Feb 12 2003 - 14:29:51 CST)
Re: slow scans? Anton Chuvakin (Wed Feb 12 2003 - 15:38:01 CST)
4 line ads on posts Alfred Huger (Wed Feb 12 2003 - 18:46:08 CST)
Summary of the responses (4 line ad) Alfred Huger (Thu Feb 13 2003 - 15:48:43 CST)
IDS Policy Manager 1.3 Final Released! Jeff Dell (Fri Feb 14 2003 - 09:19:12 CST)
Re: slow scans? James Hoagland (Fri Feb 14 2003 - 11:42:19 CST)
Re: slow scans? James Hoagland (Fri Feb 14 2003 - 11:42:35 CST)
IDS Deployment Metrics Cox, Michael (Fri Feb 14 2003 - 11:59:32 CST)
Honeyd 0.5 release Niels Provos (Sat Feb 15 2003 - 17:06:20 CST)
Re: slow scans? Tod Beardsley (Sun Feb 16 2003 - 12:33:23 CST)
Re: WLAN IDS planz (Mon Feb 17 2003 - 00:14:17 CST)
The First Honeyd Challenge Niels Provos (Sun Feb 16 2003 - 23:26:55 CST)
Re: Protocol Anomaly Detection IDS Martin Roesch (Mon Feb 17 2003 - 21:29:48 CST)
RE: slow scans? Rob Shein (Tue Feb 18 2003 - 11:02:16 CST)
Re: Protocol Anomaly Detection IDS Robert Graham (Wed Feb 19 2003 - 17:25:41 CST)
models of internet attacks. Sharath Malladi (Thu Feb 20 2003 - 12:30:17 CST)
Web server response to attacks Terry Ziemniak (Thu Feb 20 2003 - 12:48:53 CST)
Re: Protocol Anomaly Detection IDS - Honeypots Lance Spitzner (Thu Feb 20 2003 - 12:58:58 CST)
Re: Protocol Anomaly Detection IDS - Honeypots dreamwvr_at_dreamwvr.com (Thu Feb 20 2003 - 13:38:29 CST)
Re: Protocol Anomaly Detection IDS - Honeypots Bob Radvanovsky (Thu Feb 20 2003 - 13:49:00 CST)
RE: WLAN IDS Citadel Consulting (Thu Feb 20 2003 - 13:58:23 CST)
RE: WLAN IDS Citadel Consulting (Thu Feb 20 2003 - 14:46:11 CST)
Focus-IDS Mailing List Administration & Article Announcement Jason V. Miller (Thu Feb 20 2003 - 14:57:30 CST)
Re: Web server response to attacks Michael Katz (Thu Feb 20 2003 - 15:44:54 CST)
RE: Protocol Anomaly Detection IDS - Honeypots Adam Powers (Thu Feb 20 2003 - 17:28:43 CST)
RE: Protocol Anomaly Detection IDS - Honeypots Rob Shein (Thu Feb 20 2003 - 18:48:36 CST)
Re: Protocol Anomaly Detection IDS - Honeypots dreamwvr_at_dreamwvr.com (Fri Feb 21 2003 - 00:56:56 CST)
RES: Protocol Anomaly Detection IDS - Honeypots Augusto Paes de Barros (Fri Feb 21 2003 - 05:17:46 CST)
Re: RES: Protocol Anomaly Detection IDS - Honeypots Lance Spitzner (Fri Feb 21 2003 - 10:36:56 CST)
Re: RES: Protocol Anomaly Detection IDS - Honeypots Mike Shaw (Fri Feb 21 2003 - 10:54:23 CST)
RE: RES: Protocol Anomaly Detection IDS - Honeypots Pete Herzog (Fri Feb 21 2003 - 11:00:14 CST)
ids detect malicious encrypted data? Lau Ker Chea (Fri Feb 21 2003 - 03:21:04 CST)
RE: RES: Protocol Anomaly Detection IDS - Honeypots Augusto Paes de Barros (Fri Feb 21 2003 - 09:27:09 CST)
Re: ids detect malicious encrypted data? Christian Kreibich (Fri Feb 21 2003 - 11:29:56 CST)
Re: RES: Protocol Anomaly Detection IDS - Honeypots dreamwvr_at_dreamwvr.com (Fri Feb 21 2003 - 11:42:23 CST)
RE: Web server response to attacks Levinson, Karl (Fri Feb 21 2003 - 12:17:57 CST)
RE: Protocol Anomaly Detection IDS - Honeypots Rob Shein (Fri Feb 21 2003 - 13:32:40 CST)
RE: Protocol Anomaly Detection IDS - Honeypots Jordan K Wiens (Fri Feb 21 2003 - 14:12:36 CST)
RE: Protocol Anomaly Detection IDS - Honeypots Rob Shein (Fri Feb 21 2003 - 14:45:57 CST)
RE: Protocol Anomaly Detection IDS - Honeypots Jordan K Wiens (Fri Feb 21 2003 - 15:36:26 CST)
RE: Protocol Anomaly Detection IDS - Honeypots Rob Shein (Fri Feb 21 2003 - 15:54:20 CST)
RES: Protocol Anomaly Detection IDS - Honeypots Augusto Paes de Barros (Fri Feb 21 2003 - 15:53:33 CST)
RES: Protocol Anomaly Detection IDS - Honeypots Augusto Paes de Barros (Fri Feb 21 2003 - 15:56:26 CST)
RE: Protocol Anomaly Detection IDS - Honeypots Rob Shein (Fri Feb 21 2003 - 16:07:03 CST)
RE: Protocol Anomaly Detection IDS - Honeypots pbsarnac_at_thoughtworks.com (Fri Feb 21 2003 - 16:55:54 CST)
Re: RES: Protocol Anomaly Detection IDS - Honeypots Marc Benoit (Fri Feb 21 2003 - 17:30:59 CST)
Re: Protocol Anomaly Detection IDS - Honeypots Gene Yoo (Fri Feb 21 2003 - 23:05:37 CST)
Using an IDS to redirect hostile traffic to a Honeypot Jack Whitsitt (jofny) (Sat Feb 22 2003 - 20:18:26 CST)
Re: RES: Protocol Anomaly Detection IDS - Honeypots Lance Spitzner (Sun Feb 23 2003 - 13:24:20 CST)
Re: Web server response to attacks Frank Knobbe (Fri Feb 21 2003 - 18:17:56 CST)
Re: RES: Protocol Anomaly Detection IDS - Honeypots Frank Knobbe (Sat Feb 22 2003 - 14:55:39 CST)
Re: RES: Protocol Anomaly Detection IDS - Honeypots Frank Knobbe (Fri Feb 21 2003 - 18:33:17 CST)
30-ish page whitepaper Golomb, Gary (Wed Feb 26 2003 - 14:19:55 CST)
Re: 30-ish page whitepaper Konrad Rieck (Thu Feb 27 2003 - 12:37:37 CST)
Re: Snort RPC Vulnerability Jason V. Miller (Mon Mar 03 2003 - 13:06:01 CST)
Re: Snort RPC Vulnerability Bennett Todd (Mon Mar 03 2003 - 13:15:41 CST)
RE: Snort RPC Vulnerability Rob Shein (Mon Mar 03 2003 - 13:10:25 CST)
Re: [Snort-sigs] new Q signature Jon (Thu Feb 27 2003 - 22:08:01 CST)
Re: ids detect malicious encrypted data? Ivan Hernandez (Fri Feb 28 2003 - 11:54:45 CST)
Share your Honeypot and IDS experiences with the masses Jacco Tunnissen (Fri Feb 28 2003 - 22:14:46 CST)
some questions! ('binary' encoding is not supported, stored as-is) jason cheng (Sat Mar 01 2003 - 06:10:12 CST)
Snort RPC Vulnerability Jason V. Miller (Mon Mar 03 2003 - 12:20:51 CST)
Re: Snort RPC Vulnerability netsecurity (Mon Mar 03 2003 - 13:03:25 CST)
Re: Snort RPC Vulnerability Jason V. Miller (Mon Mar 03 2003 - 13:06:01 CST)
Re: Snort RPC Vulnerability Bennett Todd (Mon Mar 03 2003 - 13:15:41 CST)
Re: Snort RPC Vulnerability Bennett Todd (Mon Mar 03 2003 - 13:15:41 CST)
RE: Snort RPC Vulnerability Rob Shein (Mon Mar 03 2003 - 13:10:25 CST)
NOTE: [Snort-2003-001] Buffer overflow in Snort RPC preprocessor Martin Roesch (Mon Mar 03 2003 - 18:22:10 CST)
[Snort-2003-001] Buffer overflow in Snort RPC preprocessor Martin Roesch (Mon Mar 03 2003 - 17:53:56 CST)
NOTE: [Snort-2003-001] Buffer overflow in Snort RPC preprocessor Martin Roesch (Mon Mar 03 2003 - 18:22:10 CST)
[Snort-2003-001] Buffer overflow in Snort RPC preprocessor Martin Roesch (Mon Mar 03 2003 - 17:53:56 CST)
New SecurityFocus Focus-IDS Article Jason V. Miller (Mon Mar 03 2003 - 14:05:27 CST)
RE: Snort RPC Vulnerability Trey A Mujakporue (Mon Mar 03 2003 - 17:04:39 CST)
RE: [Snort-2003-001] Buffer overflow in Snort RPC preprocessor Geoff Craig (Mon Mar 03 2003 - 23:12:52 CST)
Re: [Snort-2003-001] Buffer overflow in Snort RPC preprocessor Martin Roesch (Tue Mar 04 2003 - 14:58:41 CST)
Re: [Snort-2003-001] Buffer overflow in Snort RPC preprocessor Martin Roesch (Tue Mar 04 2003 - 14:29:26 CST)
Release of snort_inline-1.9.1 Rob McMillen (Wed Mar 05 2003 - 05:36:58 CST)
IDS: portscan detection mosquitoothgmx.net (Sun Mar 09 2003 - 04:50:28 CST)
Packit 0.5.0 Released! Darren Bounds (Mon Mar 10 2003 - 20:58:45 CST)
OWASP Announces Beta 1 of CodeSeeker Web Application Firewall Lawrence, Gabriel (Thu Mar 13 2003 - 11:47:03 CST)
New SecurityFocus Focus-IDS Article Jason V. Miller (Thu Mar 13 2003 - 19:35:52 CST)
about mirroring port SB CH (Mon Mar 17 2003 - 18:36:45 CST)
WebDAV Vulnerability URL's Joe Magee (Tue Mar 18 2003 - 10:08:42 CST)
Re: about mirroring port nate (Tue Mar 18 2003 - 20:50:53 CST)
RE: about mirroring port Rob Shein (Tue Mar 18 2003 - 21:36:22 CST)
Re: about mirroring port Joe Magee (Thu Mar 20 2003 - 01:36:18 CST)
Re: about mirroring port Karel Chwistek (Thu Mar 20 2003 - 02:28:25 CST)
RE: about mirroring port David Vertie (Thu Mar 20 2003 - 23:47:20 CST)
misuse detector kitkat (Sat Mar 22 2003 - 11:41:02 CST)
Training IDS Tarek Abbes (Fri Mar 21 2003 - 02:58:13 CST)
results of the first honeyd challenge Niels Provos (Sat Mar 22 2003 - 14:00:33 CST)
Working with/Setting up IDS (Papers) David Vertie (Mon Mar 24 2003 - 02:05:48 CST)
Re: misuse detector Stefano Zanero (Mon Mar 24 2003 - 03:03:09 CST)
Re: about mirroring port Dejan Markovic (Mon Mar 24 2003 - 09:21:53 CST)
pH! Automated Response Using System-Call Delays Pathmenanthan Ramakrishna (Tue Mar 25 2003 - 03:06:52 CST)
commercial IPS JC (Mon Mar 24 2003 - 10:54:48 CST)
anomaly-based network IDS Lau Ker Chea (Tue Mar 25 2003 - 22:08:32 CST)
[Snort-users] Snort 2.0 rc1 available (fwd) Dan Hanson (Wed Mar 26 2003 - 17:35:13 CST)
Anamoly based network IDS vishal p (Thu Mar 27 2003 - 01:03:29 CST)
Re: Anamoly based network IDS Lance Spitzner (Thu Mar 27 2003 - 09:48:53 CST)
Problems with Snort-1.9.1 Toby Miller (Thu Mar 27 2003 - 20:23:57 CST)
Re: Working with/Setting up IDS (Papers) Patrick S. Harper (Fri Mar 28 2003 - 07:10:51 CST)
False Positives with IntruVert Cure, Samuel J (Fri Mar 28 2003 - 11:36:23 CST)
Re: False Positives with IntruVert Paul Schmehl (Fri Mar 28 2003 - 12:17:24 CST)
RE: Anamoly based network IDS Graham, Robert (ISS Atlanta) (Fri Mar 28 2003 - 01:36:55 CST)
RE: False Positives with IntruVert Bill Boyle (Fri Mar 28 2003 - 14:18:06 CST)
Re: Anamoly based network IDS Brian Hernacki (Fri Mar 28 2003 - 17:18:07 CST)
RE: False Positives with IntruVert Alan Shimel (Sat Mar 29 2003 - 10:52:57 CST)

Last message date: Mon Mar 31 2003 - 11:30:09 CST
Archived on: Mon Mar 31 2003 - 11:30:10 CST

343 messages sorted by: [ author ] [ thread ] [ subject ]