Sapphire worm and Real Secure Server Sensor

From: supersekuritydude@hushmail.com
Date: 01/30/03

  • Next message: Garritano,Robert: "RE: Did IDSes detect the SQL worm?"
    Date: Thu, 30 Jan 2003 11:52:18 -0800
    To: focus-ids@securityfocus.com
    From: supersekuritydude@hushmail.com
    

    -----BEGIN PGP SIGNED MESSAGE-----

    Has anyone put together a solution to detect the worm using Real Secure's server sensor? I know that there's a way you can do it via Secure Logic...has anyone implemented a secure logic solution in their own infrastructure, and how did you keep udp port scan false positives down to a manageable level?

    thanks!
    -----BEGIN PGP SIGNATURE-----
    Version: Hush 2.2 (Java)
    Note: This signature can be verified at https://www.hushtools.com/verify

    wmYEARECACYFAj45gnAfHHN1cGVyc2VrdXJpdHlkdWRlQGh1c2htYWlsLmNvbQAKCRD/
    AisSLreRZpt0AKCizwpBTUkddhMp2HhKPmqmXDP76wCgl6sKBz6NZhZ95zkOiktBgZhn
    wwc=
    =hGAn
    -----END PGP SIGNATURE-----

    Concerned about your privacy? Follow this link to get
    FREE encrypted email: https://www.hushmail.com/?l=2

    Big $$$ to be made with the HushMail Affiliate Program:
    https://www.hushmail.com/about.php?subloc=affiliate&l=427ect200301301952.h0UJqJej024394@mailserver2.hushmail.com



    Relevant Pages