|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[Snort-users] Extrange alerts
From: Ruben Rubio (webmaster
programasweb.com)
Date: Wed Jan 07 2004 - 06:27:23 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hi,
I have been installer snort two days ago in a redhat 9. I have a lot of
alerts, but the problem is that my computer seems to be the source. I
would like to know
if its normal (I m almost sure that its not) and what could i do to
solve the problem.
The alerts that i use to have are the following:
(http\_inspect) IIS UNICODE CODEPOINT ENCODING 2004-01-06
18:15:48 xx.xx.xx.xx:32837 66.102.9.99:80
(http\_inspect) DOUBLE DECODING ATTACK 2004-01-06
15:35:31 xx.xx.xx.xx:33780 64.4.26.250:80
Thanxs ...
-------------------------------------------------------
This SF.net email is sponsored by: IBM Linux Tutorials.
Become an expert in LINUX or just sharpen your skills. Sign up for IBM's
Free Linux Tutorials. Learn everything from the bash shell to sys admin.
Click now! http://ads.osdn.com/?ad_id=1278&alloc_id=3371&op=click
_______________________________________________
Snort-users mailing list
Snort-userslists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]