Remote File include (RFI) vulnerabilities
- From: "Ravi Chunduru" <ravi.is.chunduru@xxxxxxxxx>
- Date: Wed, 16 Jul 2008 12:05:54 -0700
Hi,
I am using IntruPro-IPS to protect both servers and clients. It seems
to be flagging RFI related anomalies for traffic going from internal
clients to servers in Internet. I thought these attacks need to be
detected only if the internal servers are being attacked. That is, I
think that RFI detection is needed for server protection.
is it necessary to check the internal client traffic, that is, is this
needed for client side protection. Any reasons?
thanks
Ravi
------------------------------------------------------------------------
Test Your IDS
Is your IDS deployed correctly?
Find out quickly and easily by testing it
with real-world attacks from CORE IMPACT.
Go to http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=intro_sfw
to learn more.
------------------------------------------------------------------------
- Follow-Ups:
- Re: Remote File include (RFI) vulnerabilities
- From: Jamie Riden
- Re: Remote File include (RFI) vulnerabilities
- Prev by Date: RE: Signature for CVE ID: CVE-2008-1151 (CISCO PPTP memory leak - DoS)
- Next by Date: DNS Cache Poisoning attack
- Previous by thread: Signature for CVE ID: CVE-2008-1151 (CISCO PPTP memory leak - DoS)
- Next by thread: Re: Remote File include (RFI) vulnerabilities
- Index(es):
Relevant Pages
|
