Network Security: Detailed info on Re: [Snort-sigs] Proposal for addition of author to standard rule listin

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Snort-Signatures

[Top] [All Lists]

Re: [Snort-sigs] Proposal for addition of author to standard rule listin

from [Nigel Houghton] Network Security

[Permanent Link]

Subject:	Re: [Snort-sigs] Proposal for addition of author to standard rule listings
Date:	Wed, 3 Nov 2004 13:38:39 -0600

On  0, Frank Knobbe <frank@knobbe.us> allegedly wrote:

On Wed, 2004-11-03 at 13:22, Brian wrote:

Rule documentation has that already.


Yes, but these attribution are only done to official Snort rules. In
other words, they are snort-rules dependent. I was hoping to link the
dependency directly to the rules themselves so that third parties, like
Bleeding, could use it as well. That way the attribution is linked
directly to the rule, not the repository.


My recommendation would be that bleeding.rules also include associated
documentation. It kinda helps when you want to know why a rule fired.

+-----------------------------------------------------------------+
    Nigel Houghton      Research Engineer       Sourcefire Inc.
                  Vulnerability Research Team

 Cat: "Forget red - let's go all the way up to brown alert!"
 Kryten: "There's no such thing as a brown alert sir."
 Cat: "You won't be saying that in a minute!"

pgpdZnUDcasMl.pgp
Description: PGP signature

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Snort-sigs] Proposal for addition of author to standard rule listings, Frank Knobbe Re: [Snort-sigs] Proposal for addition of author to standard rule listings, Brian Re: [Snort-sigs] Proposal for addition of author to standard rule listings, Frank Knobbe Re: [Snort-sigs] Proposal for addition of author to standard rule listings, Nigel Houghton <= Re: [Snort-sigs] Proposal for addition of author to standard rule listings, Matt Jonkman Re: [Snort-sigs] Proposal for addition of author to standard rule listings, Matt Jonkman Re: [Snort-sigs] Proposal for addition of author to standard rule listings, Nigel Houghton Re: [Snort-sigs] Proposal for addition of author to standard rule listings, Jason Re: [Snort-sigs] Proposal for addition of author to standard rule listings, Frank Knobbe Re: [Snort-sigs] Proposal for addition of author to standard rule listings, Jason Re: [Snort-sigs] Proposal for addition of author to standard rule listings, Hugo van der Kooij Re: [Snort-sigs] Proposal for addition of author to standard rule listings, Brian Re: [Snort-sigs] Proposal for addition of author to standard rule listings, Chich Thierry Re: [Snort-sigs] Proposal for addition of author to standard rule listings, Frank Knobbe

Previous by Date:	Re: [Snort-sigs] Proposal for addition of author to standard rule listings, Frank Knobbe
Next by Date:	Re: [Snort-sigs] Proposal for addition of author to standard rule listings, Matt Jonkman
Previous by Thread:	Re: [Snort-sigs] Proposal for addition of author to standard rule listings, Frank Knobbe
Next by Thread:	Re: [Snort-sigs] Proposal for addition of author to standard rule listings, Matt Jonkman
Indexes:	[Date] [Thread] [Top] [All Lists]