Network Security: Detailed info on Re: [Snort-sigs] false +ves for BLEEDING-EDGE P2P CHAT Skype VoIP Initia

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Snort-Signatures

[Top] [All Lists]

Re: [Snort-sigs] false +ves for BLEEDING-EDGE P2P CHAT Skype VoIP Initia

from [Russell Fulton] Network Security

[Permanent Link]

Subject:	Re: [Snort-sigs] false +ves for BLEEDING-EDGE P2P CHAT Skype VoIP Initialization
Date:	Thu, 21 Apr 2005 13:12:18 +1200

On Wed, 2005-04-20 at 17:28 +0200, stephane nasdrovisky wrote:

This may also change. The easiest thing to do is probably not letting 
users install skype if you don't want it to be used (it's easier than 
maintaining 5 or 10 snort signatures)


My interest is not that Skype is banned here, it isn't.  I want to
identify Skype users so I can differentiate them from other P2P
protocols that I detect by traffic patterns.

We have strongly enforce anti piracy policies so we follow up people who
are using p2p programs to make sure that they are not using them to
breach 3rd party copyright.  It would make my life easier if we could
eliminate the increasing pool of skype users so we don't waste time
following them up.

Russell
-- 
Russell Fulton, Information Security Officer, The University of Auckland
New Zealand

smime.p7s
Description: S/MIME cryptographic signature

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Snort-sigs] false +ves for BLEEDING-EDGE P2P CHAT Skype VoIP Initialization, Russell Fulton Re: [Snort-sigs] false +ves for BLEEDING-EDGE P2P CHAT Skype VoIP Initialization, Matt Jonkman Re: [Snort-sigs] false +ves for BLEEDING-EDGE P2P CHAT Skype VoIP Initialization, Jason Haar Re: [Snort-sigs] false +ves for BLEEDING-EDGE P2P CHAT Skype VoIP Initialization, stephane nasdrovisky Re: [Snort-sigs] false +ves for BLEEDING-EDGE P2P CHAT Skype VoIP Initialization, Matt Jonkman Re: [Snort-sigs] false +ves for BLEEDING-EDGE P2P CHAT Skype VoIP Initialization, stephane nasdrovisky Re: [Snort-sigs] false +ves for BLEEDING-EDGE P2P CHAT Skype VoIP Initialization, Russell Fulton <=

Previous by Date:	[Snort-sigs] Bleedingsnort.com Daily Update, bleeding
Next by Date:	[Snort-sigs] Bleedingsnort.com Daily Update, bleeding
Previous by Thread:	Re: [Snort-sigs] false +ves for BLEEDING-EDGE P2P CHAT Skype VoIP Initialization, stephane nasdrovisky
Next by Thread:	[Snort-sigs] VRT Certified Rule Update, Matthew Watchinski
Indexes:	[Date] [Thread] [Top] [All Lists]