Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Snort-Signatures
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Snort-sigs] Rule Set Completness

from [Frank Knobbe] Network Security [Permanent Link]
Subject: Re: [Snort-sigs] Rule Set Completness
Date: Tue, 09 May 2006 18:17:53 -0500 
On Tue, 2006-05-09 at 11:36 -0400, Matt Jonkman wrote:

see also: OSSRC Rules Overlap Committee.



There are some dupes now. We are trying to work them out with the SF
folks via the overlap committee. It's slow at the moment. That committee
is just getting it's legs, and has a lot of work ahead of it. But have
faith, I know they'll get into motion soon!


Is it? The last email in the ossrc list was from me back in September of
last year. Looks to me like OSSRC curled up and died. Especially
considering the recent rash of duplicate signatures put forth by the SF
guys in regards to malware/spyware sigs and little sigs like Nugache.

I have the impression that no one cares anymore about avoiding
duplicates. Then again, licensed VRT sigs were excluded from that
anyway.

And I have yet to see anything in regards to the SID allocation project
either. Perhaps we need to start a small SID allocation database at
BleedingSnort. Shouldn't take more than a couple days to set up.

Cheers,
Frank


-- 
It is said that the Internet is a public utility. As such, it is best
compared to a sewer. A big, fat pipe with a bunch of crap sloshing
against your ports.

Attachment: signature.asc
Description: This is a digitally signed message part

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Snort-sigs] Snort Community Rules Update, Sourcefire VRT
Next by Date:  [Snort-sigs] Sourcefire VRT Certified Rules Update, Sourcefire VRT
Previous by Thread:  Re: [Snort-sigs] Rule Set Completness, Matt Jonkman
Next by Thread:  Re: [Snort-sigs] Rule Set Completness, Jennifer Steffens
Indexes:  [Date] [Thread] [Top] [All Lists]