On Tue, 2003-03-25 at 17:56, rmkml wrote: > > true, need a way of tracking UDP 'connections' so that if packet goes > > from A -> B, then traffic from B -> A will be considered 'established' > > and ICMP traffic as 'related'. That would be easy enough but at the > > moment I'm not spending too much time implementing features that aren't > > part of the snort rulesets as they will only find limited use... > > like netfilter/iptable on linux ... precisely yes :) -- // Gianni Tedesco (gianni at scaramanga dot co dot uk) lynx --source www.scaramanga.co.uk/gianni-at-ecsc.asc | gpg --import 8646BE7D: 6D9F 2287 870E A2C9 8F60 3A3C 91B5 7669 8646 BE7D
Attachment:
signature.asc
Description: This is a digitally signed message part