[Snort-users] DOS attacks

Kamran Shafi kamran.shafi at ...11827...
Thu Mar 13 02:42:34 EDT 2008

Is there a specific preprocessor to handle DOS attacks in Snort or it is
only done through the Snort rules? In specific, I couldn't find any rules
for flooding DOS attacks and the classical DOS attacks like land and
teardrop. Do I have to write my own rules to cater for these types of

Further, I am conducting a full Nessus scan but Snort is only reporting very
few alerts (20 odd). Is it normal?

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20080313/171cb103/attachment.html>

More information about the Snort-users mailing list