On Fri, 2003-06-20 at 11:29, rmkml wrote: > Jun 18 15:03:49 xxx 11 firestorm-nids053: 1055941429.164894 > alert=tcpstream sig=4.0 priority=5 src=64.94.50.88 dst=217.128.40.92 > proto=6 spt=80 dpt=34037 flags=****A*** from=server server=ESTABLISHED > client=ESTABLISHED : Reassembly Error > > Download tcpdump file on this link : (3Mo) > http://crusoecids.dyndns.org/cyberguard-firestorm_reassemblyerror.tcpdump.gz I think it's just because the HTTP decoder isn't finished yet, there are still a few bugs to iron out. I will use your capture data as part of my test harness and make sure that it works by the 0.5.4 though. In the mean time the error is mostly harmless. Thanks for the bug report. -- // Gianni Tedesco (gianni at scaramanga dot co dot uk) lynx --source www.scaramanga.co.uk/gianni-at-ecsc.asc | gpg --import 8646BE7D: 6D9F 2287 870E A2C9 8F60 3A3C 91B5 7669 8646 BE7D
Attachment:
signature.asc
Description: This is a digitally signed message part