[***] Results from Oinkmaster started Wed Jun 8 20:00:04 2005 [***]
[///] Modified active rules: [///]
2001807 - BLEEDING-EDGE EXPLOIT CAN-2005-0399 Gif Vuln via http
(bleeding-exploit.rules)
2001972 - BLEEDING-EDGE Behavioral Unusually fast Terminal Server Traffic,
Potential Scan or Infection (bleeding-scan.rules)
2001979 - BLEEDING-EDGE POLICY SSH Server Banner Detected on Unusual Port
(bleeding-policy.rules)
2001980 - BLEEDING-EDGE POLICY SSH Client Banner Detected on Unusual Port
(bleeding-policy.rules)
2001981 - BLEEDING-EDGE POLICY SSHv2 Server KEX Detected on Unusual Port
(bleeding-policy.rules)
2001982 - BLEEDING-EDGE POLICY SSHv2 Client KEX Detected on Unusual Port
(bleeding-policy.rules)
2001983 - BLEEDING-EDGE POLICY SSHv2 Client New Keys Detected on Unusual Port
(bleeding-policy.rules)
2001984 - BLEEDING-EDGE POLICY SSH session in progress on Unusual Port
(bleeding-policy.rules)
[///] Modified inactive rules: [///]
2001973 - BLEEDING-EDGE POLICY SSH Server Banner Detected on Expected Port
(bleeding-policy.rules)
2001974 - BLEEDING-EDGE POLICY SSH Client Banner Detected on Expected Port
(bleeding-policy.rules)
2001975 - BLEEDING-EDGE POLICY SSHv2 Server KEX Detected on Expected Port
(bleeding-policy.rules)
2001976 - BLEEDING-EDGE POLICY SSHv2 Client KEX Detected on Expected Port
(bleeding-policy.rules)
2001977 - BLEEDING-EDGE POLICY SSHv2 Client New Keys detected on Expected Port
(bleeding-policy.rules)
2001978 - BLEEDING-EDGE POLICY SSH session in progress on Expected Port
(bleeding-policy.rules)
[+++] Added non-rule lines: [+++]
-> Added to bleeding-sid-msg.map (14):
2001807 || BLEEDING-EDGE EXPLOIT CAN-2005-0399 Gif Vuln via http
2001972 || BLEEDING-EDGE Behavioral Unusually fast Terminal Server
Traffic, Potential Scan or Infection
2001973 || BLEEDING-EDGE POLICY SSH Server Banner Detected on Expected
Port
2001974 || BLEEDING-EDGE POLICY SSH Client Banner Detected on Expected
Port
2001975 || BLEEDING-EDGE POLICY SSHv2 Server KEX Detected on Expected
Port
2001976 || BLEEDING-EDGE POLICY SSHv2 Client KEX Detected on Expected
Port
2001977 || BLEEDING-EDGE POLICY SSHv2 Client New Keys detected on
Expected Port
2001978 || BLEEDING-EDGE POLICY SSH session in progress on Expected Port
2001979 || BLEEDING-EDGE POLICY SSH Server Banner Detected on Unusual
Port
2001980 || BLEEDING-EDGE POLICY SSH Client Banner Detected on Unusual
Port
2001981 || BLEEDING-EDGE POLICY SSHv2 Server KEX Detected on Unusual
Port
2001982 || BLEEDING-EDGE POLICY SSHv2 Client KEX Detected on Unusual
Port
2001983 || BLEEDING-EDGE POLICY SSHv2 Client New Keys Detected on
Unusual Port
2001984 || BLEEDING-EDGE POLICY SSH session in progress on Unusual Port
[---] Removed non-rule lines: [---]
-> Removed from bleeding-policy.rules (1):
var SSH_PORTS 22
-> Removed from bleeding-sid-msg.map (14):
2001807 || BLEEDING-EDGE EXPLOIT EXPLOIT CAN-2005-0399 Gif Vuln via http
2001972 || BLEEDING-EDGE Behavioral Unusual Term Server Traffic,
Potential Scan or Infection
2001973 || BLEEDING-EDGE POLICY SSH Server Banner Detected
2001974 || BLEEDING-EDGE POLICY SSH Client Banner Detected
2001975 || BLEEDING-EDGE POLICY SSHv2 Server KEX Detected
2001976 || BLEEDING-EDGE POLICY SSHv2 Client KEX Detected
2001977 || BLEEDING-EDGE POLICY SSHv2 Client New Keys detected
2001978 || BLEEDING-EDGE POLICY SSH session in progress
2001979 || BLEEDING-EDGE POLICY SSH Server Banner Detected on Off Port
2001980 || BLEEDING-EDGE POLICY SSH Client Banner Detected on Off Port
2001981 || BLEEDING-EDGE POLICY SSHv2 Server KEX Detected on Off Port
2001982 || BLEEDING-EDGE POLICY SSHv2 Client KEX Detected on Off Port
2001983 || BLEEDING-EDGE POLICY SSHv2 Client New Keys Detected on Off
Port
2001984 || BLEEDING-EDGE POLICY SSH session in progress on Off Port
-------------------------------------------------------
This SF.Net email is sponsored by: NEC IT Guy Games. How far can you shotput
a projector? How fast can you ride your desk chair down the office luge track?
If you want to score the big prize, get to know the little guy.
Play to win an NEC 61" plasma display: http://www.necitguy.com/?r=20
_______________________________________________
Snort-sigs mailing list
Snort-sigs@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
