Win2k Anomaly test OT

[Jason Burnett <jason () cannonfodder org>]

I know this is kind of off topic for here, but I need some help. We have
a very large client that is requesting a host based anomaly checker. The
problem is they only do SSL traffic. So the anomaly checker would have
to somehow get the info after IIS had unencrypted but before the data
could do any harm to the server. I am hoping I can find a free solution
because they currently have a cluster of 22 Win2k servers this will have
to run on. I am looking for any suggestions on this.
-- 
begin  .signature
This is a .signature virus! Please copy me into your .signature!
See Microsoft KB Article Q265230 for more information.
end


-------------------------------------------------------
This sf.net email is sponsored by: Dice - The leading online job board
for high-tech professionals. Search and apply for tech jobs today!
http://seeker.dice.com/seeker.epl?rel_code=31
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users