[Snort-sigs] What is "FTP file_id.diz access" about?

Jason Haar Jason.Haar at ...651...
Wed Jan 22 12:01:56 EST 2003


I've just had that rule trigger three times, and it's classified as
classtype:suspicious-filename-detect. 

Googling for that filename just shows references to BBS software - no
references to anything dangerous.

Is that rule actually relevent for anything?

Thanks!

-- 
Cheers

Jason Haar
Information Security Manager, Trimble Navigation Ltd.
Phone: +64 3 9635 377 Fax: +64 3 9635 417
PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1




More information about the Snort-sigs mailing list