[Snort-sigs] Questions about Snort Alerts

eric eric at ...1659...
Tue Jul 8 13:27:19 EDT 2003


Hi,
 
         There is an alert in the following:
 
                   [**] [1:483:2] ICMP PING CyberKit 2.2 Windows [**]
[Classification: Misc activity] [Priority: 3] 
07/04-13:46:26.915559 192.168.53.19 -> 211.152.51.104
ICMP TTL:124 TOS:0x0 ID:17337 IpLen:20 DgmLen:60
Type:8  Code:0  ID:43444   Seq:768  ECHO
[Xref => http://www.whitehats.com/info/IDS154]
 
         I would like to ask what the the ID (ID:43444) means? Please
reply me what you feel free. Thank you.
 
Best regards,
Eric
 
========================================================================
================
梁颖培 / 数据通讯部
Eric / DATA & COMMUNICATION DEPT.
新力宽频网络有限公司 ( <http://www.sunly.com/> www.sunly.com)
Sunly Broadband Network Co. LTD ( <http://www.sunly.com/> www.sunly.com)
电话:0757-2223088  传真:0757-2226088
Tel:0757-2223088  Fax:0757-2226088
电子邮件:  <mailto:eric at ...1659...> eric at ...1659...
E-mail:  <mailto:eric at ...1659...> eric at ...1659...
========================================================================
================
 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-sigs/attachments/20030708/1e3f204a/attachment.html>


More information about the Snort-sigs mailing list