[Snort-sigs] Sourcefire VRT Certified Rules Update

Sourcefire VRT research at ...435...
Wed Oct 18 18:05:19 EDT 2006


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Sourcefire VRT Certified Rules Update

Synopsis:
The Sourcefire VRT has added multiple rules in the spyware-put and
backdoor categories to provide coverage for emerging spyware and trojan
horse threats. The VRT has also updated numerous rules in the FTP
category to accommodate larger default values for FTP services,
additionally reference information has been added and improved
throughout the VRT Certified Rule Set.


Details:
As a result of ongoing research, the Sourcefire VRT has added multiple
rules to the spyware and backdoor rule sets to provide coverage for
emerging threats from these technologies.

A number of rules in the FTP rule category have been updated to
accommodate larger default values in some FTP services.

The VRT has also updated and added reference information throughout the
entire Sourcefire VRT Certified Rule Set.

For a complete list of new and modified rules:

http://www.snort.org/rules/docs/ruleset_changelogs/changes-2006-10-18.html

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.4 (Darwin)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFFNqUfMpm0ve0NhMcRAv9SAJ0QLYKWSfVWR2vU0/azL4Bowa/iDQCgooOa
3PR6taVgZFnVslLJYSTYEaU=
=pGnz
-----END PGP SIGNATURE-----




More information about the Snort-sigs mailing list