[Snort-users] Rules for ssh exploit
Ralf.Hildebrandt at ...3909...
Mon Nov 12 01:58:03 EST 2001
On Fri, Nov 02, 2001 at 04:34:57PM +1300, Russell Fulton wrote:
> Does any one have snort rules for detecting the recent spate of
> ssh attacks or are all the usable fingerprints hidden by the encryption?
Ralf Hildebrandt Tel. +49 (0)30-450 570-155
Fax. +49 (0)30-450 570-916
Your mantra for today is: Don't let data from the network near a
shell. Bad things happen. -- Randall Schwartz
More information about the Snort-users