[Snort-users] Stealth Interface - Additional Information
carsenault at ...4459...
Mon Jan 7 10:16:09 EST 2002
In addition to removing all bindings on the NIC card on our sensor
running Windows 2000, I also disabled automatic private IP addressing
via reg hack which now put the sensor interface at an IP address of
0.0.0.0 with no subnet mask or gateway. This is basically a stealth
interface equivalent to what can be done with linux/unix. Can anyone
provide information related to the possibility of compromising this
Due to issues with the Ethernet tap we had, I had to eliminate it so
both the send and receive Ethernet pairs are active on the sensor
Thanks for your help...
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Snort-users