[framework] Snort Rules
Jason
security at brvenik.com
Thu Oct 19 11:39:27 CDT 2006
check out this rule in the community set.
100000207 || COMMUNITY IMAP GNU Mailutils imap4d hex attempt
Matt Jonkman wrote:
> I don't think we have one in the bleeding ruleset, but if you are
> playing with it, send me a pcap offlist and I'll see about making one up.
>
> Matt
>
> jose antonio franca wrote:
>> Hi there,
>>
>> Does anybody happen to know any Snort rule for detecting
>> gnu_mailutils_imap4 attack ?
>>
>> Thanks
>>
>> José Antônio
>>
>> ------------------------------------------------------------------------
>> MSN Messenger: converse com os seus amigos online. Instale grátis.
>> Clique aqui. <http://g.msn.com/8HMAENBR/2749??PS=47575>
>
More information about the framework
mailing list