[Nettime-bold] WEF attack and homework

ricardo dominguez on Wed, 10 Apr 2002 16:49:01 +0200 (CEST)

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[Nettime-bold] WEF attack and homework

To: <nettime-l@bbs.thing.net>
Subject: [Nettime-bold] WEF attack and homework
From: "ricardo dominguez" <rdom@thing.net>
Date: Wed, 10 Apr 2002 10:46:44 -0400
Organization: The Thing
Reply-to: nettime-bold@nettime.org

Any helpful hints for this poor "intrursion and dection" student?

r

----- Original Message ----- 
From: "Julien Delfosse" <delfosse@student.fsa.ucl.ac.be>
To: <rdom@thing.net>
Sent: Wednesday, April 10, 2002 10:21 AM
Subject: WEF attack


> Hi,
> 
> I'm currently following a course about intrusion
> detection and security with Marc Dacier.
> 
> I had to study your attack against WEF, which is
> quite easy to understand, but the second part
> seems more difficult to me : I have to detect this
> attack (possibly before it's too late) and block
> it if possible.  We're supposed to use snort as
> firewall, but imho it's impossible to detect the
> attack without a statefull firewall (all HTTP
> requests are valid, without stats about traffic
> it's imposiible to do anything)
> 
> Do you have an idea of what I could do with snort
> ?
> 
> Thanks in advance.
> 
> Julien Delfosse
> 

_______________________________________________
Nettime-bold mailing list
Nettime-bold@nettime.org
http://amsterdam.nettime.org/cgi-bin/mailman/listinfo/nettime-bold

Prev by Date: [Nettime-bold] Re: <nettime> Bourgeoisophobia
Next by Date: [Nettime-bold] Re: <nettime> Palestina [5x]
Previous by thread: [Nettime-bold] Advertisement
Next by thread: [Nettime-bold] Re: <nettime> Palestina [5x]
Index(es):
- Date
- Thread