[Snort-users] The truth about Napster

Joe McAlerney joey at ...155...
Tue Oct 3 19:05:35 EDT 2000


I'm sure someone will correct me if I'm wrong, but I think that rule was
added to detect Napster traffic in organizations that do not want to
allow Napster for reasons of bandwith consumption, and distribution of
pirated music.  I have not heard about gaping security flaws within
Napster, but that doesn't mean they don't exist.  I would remove it if
your organization is not concerned with mp3's flying around your

-Joe M.

jess at ...521... wrote:
>         Thanks for all the info about the Large ICMP packets issue.
>         Well, I hope this question is not too off-topic, but I started to
> get Napster alerts from snort ("Napster 7777 Data"). One of my users had
> installed Napster in a Linux box in which he has root priviledges.
>         I've being trying to gather some info about the real risks of
> running Napster but found nothing very conclusive except for occasional
> bugs. I want to be able to decide if I can allow hime to run Napster or
> not, i.e. if it's safe to run it, and if not, I would like to have the
> right arguments.
>         I guess that if there is a rule for Napster it means that Napster
> is dangerous. Can you point out some references/opinions on this?
>         Thanks.
>                                                                 JESS
> _______________________________________________
> Snort-users mailing list
> Snort-users at lists.sourceforge.net
> http://lists.sourceforge.net/mailman/listinfo/snort-users

More information about the Snort-users mailing list