[Snort-sigs] snort-rules with resp

Alexandru Balan Jay at ...1723...
Wed Jul 30 18:57:06 EDT 2003


<disclaimer> i'm a snort newbie </disclaimer>

A few questions:

will snort release rules with flexresp ? manually adding responses to
2845 rules ( which came with rules-current.tgz) is kinda hard

in percentange, how many public exploits are recognized in the latest
snortrules-current ? if not many, do i have to write them or is there
some location i can get them from ? (uptodate if possible). I tested a
few exploits and snort let them through without even a warning ( e.g. x2
- ssh remote exploit ) 
Thanx in advance for your patience and understanding :) 

-- 
Jay
Public GnuPG Key AAB551A4 available at
http://www.ines.ro/public_keys/jay.gpg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 187 bytes
Desc: This is a digitally signed message part
URL: <https://lists.snort.org/pipermail/snort-sigs/attachments/20030730/b349b226/attachment.sig>


More information about the Snort-sigs mailing list