Snort mailing list archives

Previous By Date Next
Previous By Thread Next

FAQ-type Q plus FAQ patch

From: "Jason A. Haynes" <jahaynes () erols com>
Date: Mon, 27 Aug 2001 19:51:54 -0400 (EDT)

Question: Is Snort an acronym?  Is there some meaning to the name besides
the obvious (it grubs around your network snorting up packets)?  If
there's some nifty explanation I imagine it would be FAQ-able.

FAQ index/numbering patch

Somehow between the July .html version on the site and the .txt in today's
cvs answers 1.10 and 1.11 to 1.11 and 1.12 (skipping 1.10).

--- snort.orig/FAQ      Mon Aug 27 19:31:26 2001
+++ snort/FAQ   Mon Aug 27 19:31:04 2001
@@ -257,7 +257,7 @@
    alerts due to its highly optimized nature... and using these
    kinds of gimmicks hardly qualifies as executing a stealthy attack...
 
-1.11 --faq-- --snort-- --faq-- --snort-- --faq-- --snort-- --faq--
+1.10 --faq-- --snort-- --faq-- --snort-- --faq-- --snort-- --faq--
 Q: I've heard it is possible to use polymorphic mutators on shellcode?
 
 A: Yes, and this could defeat some of the NOP sled detection signatures
@@ -266,7 +266,7 @@
    detect some of these attacks, and another defense is being prepared
    for the next version of snort...
 
-1.12 --faq-- --snort-- --faq-- --snort-- --faq-- --snort-- --faq--
+1.11 --faq-- --snort-- --faq-- --snort-- --faq-- --snort-- --faq--
 Q: Does Snort log the full packets that it generates alerts on? 
 
 A: Yes, they should be in the directory that has the same IP address as the


-- 
Hey, if you can't remember when you booted it, it ain't
windoze.                                - CyberPeasant


_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
http://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: