[Snort-users] Aw...

Tim Sailer sailer at ...2968...
Fri Nov 23 14:17:02 EST 2001

It's a sad day when both snort.org and whitehats are both down at the same 

I'm seeing a LOT of the ssh crc attacks in the logs of the machines that
actually log to my central machine. Does someone have a snort rule to
detect this?


Tim Sailer <sailer at ...2968...> 
Manager, Cyber Security Operations
Brookhaven National Laboratory  (631) 344-3001

More information about the Snort-users mailing list