[Snort-sigs] Signature Definition #549, 10 of 20
Esler, Joel Contractor
EslerJ at ...785...
Mon Jun 9 06:06:15 EDT 2003
Rule: -- napster login
Sid: -- 549
Summary: -- This string detects Napster client attempting to connect to a
Impact: -- Unauthroized Peer 2 Peer sharing client installed and attempting
to connect on your network.
Detailed Information: -- Napster is Software, which is used to share
computer files, this could allow users in the network to be able to share
files, including internal company documents to the world anonymously. This
string detects a Napster client attempting to login.
Affected Systems: -- Any that have the software installed
Attack Scenarios: -- Slim to Dangerous
Ease of Attack: -- Easy if installed
False Positives: -- Unknown
False Negatives: -- Unknown
Corrective Action: -- Find and remove Napster clients on your network.
Contributors: -- Joel Esler
Additional References: www.gnutella.com
More information about the Snort-sigs