[Snort-users] Big Brother: Alerts SSH CRC exploit
edwin at ...2758...
Wed Nov 21 23:44:02 EST 2001
On Wed, 21 Nov 2001 23:35:29 -0500 Wynn Fenwick <wfenwick at ...4126...> wrote:
> Has anyone else experienced Big Brother health checking triggering the
> SSH CRC vulnerability exploit rules?
> Any opinions as to why this is necessary from the Big Brother users of
> the Snort community? The signature is very content specific, so it's
> wierd something doing a health check would trigger..
If it's an active security scanner/checker, it's perfectly normal to trigger some
alerts. (like nessus does) It just tries some things to see if your box is
vulnerable to certain exploits.
> FHLSim - The Fantasy Hockey League Simulator of Choice
> Snort-users mailing list
> Snort-users at lists.sourceforge.net
> Go to this URL to change user options or unsubscribe:
> Snort-users list archive:
Edwin Eefting /- \ _/ Business Internet Trends BV
/--- \/ __________________
More information about the Snort-users