Intrusion Detection Systems mailing list archives
Re: strings in backdoor binaries
From: dgailey () insync net (DPG)
Date: Fri, 28 Apr 2000 18:27:21 -0500 (CDT)
Archive: http://msgs.securepoint.com/ids FAQ: http://www.ticm.com/kb/faq/idsfaq.html IDS: http://www-rnks.informatik.tu-cottbus.de/~sobirey/ids.html UNSUBSCRIBE: email "unsubscribe ids" to majordomo () uow edu au The real answer would be to install tripwire after you install your operating systems. and thoughts on commercial software that matches checksums of binary files for specific version information or installed default to that particular OS. This would make a great idea for a gnu project. anyone know if anything of this type has been introduced into the community? -DPG . . . .
Current thread:
- Re: intruder clues, (continued)
- Re: intruder clues flynngn () jmu edu (Apr 24)
- Re: intruder clues Philippe Bourgeois (Apr 25)
- Re: intruder clues Lance Spitzner (Apr 25)
- Scanning on tcp port 27374 Benninghoff, John (Apr 26)
- Re: Scanning on tcp port 27374 Gary Flynn (Apr 27)
- Re: Scanning on tcp port 27374 DPG (Apr 27)
- Re: Part 2 Scanning on tcp port 27374 DPG (Apr 27)
- strings in backdoor binaries Meritt, Jim (Apr 27)
- Re: strings in backdoor binaries Anton Chuvakin (Apr 28)
- Re: strings in backdoor binaries Gary Flynn (Apr 28)
- Re: strings in backdoor binaries DPG (Apr 28)
- Re: strings in backdoor binaries Jonas Eriksson (Apr 29)
- Re: strings in backdoor binaries Jonas Eriksson (Apr 29)
- Sniffing.... SatyaNarayana ANV (Apr 29)
- Re: intruder clues flynngn () jmu edu (Apr 24)
- RE: Scanning on tcp port 27374 Thomas J. Arseneault (Apr 27)
- Re: Scanning on tcp port 27374 Talisker (Apr 27)
- Fwd: Re: Part 2 Scanning on tcp port 27374 Lachlan Cranswick (Apr 27)
- Re: Fwd: Re: Part 2 Scanning on tcp port 27374 DPG (Apr 28)
- RE: Scanning on tcp port 27374 Benninghoff, John (Apr 27)
- Re: RE: Scanning on tcp port 27374 Mike Condy (Apr 28)