[Snort-sigs] Signature Definition #549, 10 of 20

Esler, Joel Contractor EslerJ at ...785...
Mon Jun 9 06:06:15 EDT 2003

 Rule: -- napster login
 Sid: -- 549 
 Summary: -- This string detects Napster client attempting to connect to a
Napster server.
 Impact: -- Unauthroized Peer 2 Peer sharing client installed and attempting
to connect on your network.
 Detailed Information: -- Napster is Software, which is used to share
computer files, this could allow users in the network to be able to share
files, including internal company documents to the world anonymously.  This
string detects a Napster client attempting to login.
 Affected Systems: -- Any that have the software installed
 Attack Scenarios: -- Slim to Dangerous
 Ease of Attack: -- Easy if installed
 False Positives: -- Unknown
 False Negatives: -- Unknown
 Corrective Action: -- Find and remove Napster clients on your network.
 Contributors: -- Joel Esler
 Additional References: www.gnutella.com

More information about the Snort-sigs mailing list