Full Disclosure mailing list archives

Snort on a Bootable FreeBSD CD to catch Nachi, Blaster & Sobig

From: Justin Tan <justin.tan () extol com my>
Date: Wed, 03 Sep 2003 18:29:42 +0800

Here's a site to download an iso image of snort running out from a
bootable FreeBSD CD to catch Nachi, Blaster & Sobig. Useful for
sysadmins who aren't familiar with nixers or aren't yet snorters.

http://www.my-snort.org/downloads/FreeSBIE.ISO
The MD5 sum is e24ddb47d6c0ade80c79b53bbe88735b

Uid: root
Pwd: <none>
Alerts stored in /home/alert

Tried it out on some networks and it seems to help those who's IDS can't
detect these worms.

Justin.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Re: New Microsoft Internet Explorer mshtml.dll Denial of Service?, (continued)
- Re: New Microsoft Internet Explorer mshtml.dll Denial of Service? Thor Larholm (Sep 02)
- RE: New Microsoft Internet Explorer mshtml.dll Denial of Service? Marc Ruef (Sep 02)
  - Re[2]: New Microsoft Internet Explorer mshtml.dll Denial of Service? Zobel M. (Sep 02)
  - RE: New Microsoft Internet Explorer mshtml.dll Denial of Service? Steve Wray (Sep 02)
- Re: New Microsoft Internet Explorer mshtml.dll Denial of Service? at4r ins4n3 (Sep 02)
- New Microsoft Internet Explorer mshtml.dll Denial of Service? beheer (Sep 02)
- Re[2]: New Microsoft Internet Explorer mshtml.dll Denial of Service? nonleft (Sep 02)
  - Re: New Microsoft Internet Explorer mshtml.dll Denial of Service? Tim (Sep 02)
- RE: New Microsoft Internet Explorer mshtml.dll Denial of Service? Schmehl, Paul L (Sep 02)
- RE: New Microsoft Internet Explorer mshtml.dll Denial of Service? Marc Ruef (Sep 03)
  - Snort on a Bootable FreeBSD CD to catch Nachi, Blaster & Sobig Justin Tan (Sep 03)