Normalizers, OpenBSD, etc.
From: goom0981@yahoo.comDate: 05/31/02
- Previous message: Hammerle, Tye F: "RE: Normalizers, OpenBSD, etc."
- Next in thread: Hammerle, Tye F: "RE: Normalizers, OpenBSD, etc."
- Maybe reply: Hammerle, Tye F: "RE: Normalizers, OpenBSD, etc."
- Reply: Jonas Eriksson: "Re: Normalizers, OpenBSD, etc."
- Reply: Bennett Todd: "Re: Normalizers, OpenBSD, etc."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 31 May 2002 06:36:23 -0000 From: <goom0981@yahoo.com> To: focus-ids@securityfocus.com('binary' encoding is not supported, stored as-is)
Having read Handley, Paxson, and Kreibich's paper on norm some months
ago, I have been very interested in the concept of traffic normalization
and have been waiting for the technology to season a bit.
At a recent security conference, I was told by a prominent IDS developer
that the new version of OpenBSD has these capabilities resident (in pf
maybe??). However, I haven't been able to find out anything more on this.
If someone wanted to begin the process of implementing traffic
normalization ("norm" or something else) today, where would he/she go?
Thanks,
Justin
- Previous message: Hammerle, Tye F: "RE: Normalizers, OpenBSD, etc."
- Next in thread: Hammerle, Tye F: "RE: Normalizers, OpenBSD, etc."
- Maybe reply: Hammerle, Tye F: "RE: Normalizers, OpenBSD, etc."
- Reply: Jonas Eriksson: "Re: Normalizers, OpenBSD, etc."
- Reply: Bennett Todd: "Re: Normalizers, OpenBSD, etc."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
