LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page Snort Alert - What should I do?
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
LinkBack Search this Thread
Old 04-03-2002, 04:38 PM   #1
tarballedtux
Member
 
Registered: Aug 2001
Location: Off the coast of Madadascar
Distribution: What's the difference? It's Linux.
Posts: 497

Rep: Reputation: 30
Snort Alert - What should I do?

I just recently installed Snort. I but in IDS mode and I have been getting some alerts according to Snort. Some of them are meaningless but others worry me.

Here's a URL to the alert log in HTML form:

http://drewkennerly.tripod.com/alert.html

Thanks in advance
 
Old 04-06-2002, 05:26 AM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 21,610
Blog Entries: 47

Rep: Reputation: 1413Reputation: 1413Reputation: 1413Reputation: 1413Reputation: 1413Reputation: 1413Reputation: 1413Reputation: 1413Reputation: 1413Reputation: 1413
In plain english it means 80.63.23.45 alerts 68.81.xx.xx because 80.63.23.45 is running out of resources for maintaining error-free connections, it's already dropping packets, or is about to drop packets.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Snort alert Problem bharathvn Linux - Security 9 11-21-2005 08:24 AM
snort alert and logging wilcsnyder Linux - Security 1 08-16-2004 07:08 PM
Snort alert / Am i attacking ? exalik Linux - Security 6 10-22-2003 03:55 PM
Snort, P2P rule and 1432 Alert.... shelby Linux - Security 1 06-20-2003 02:10 PM
Snort: Unusual Alert Destination robeb Linux - Networking 0 02-28-2003 08:29 PM


All times are GMT -5. The time now is 04:38 PM.

Contact Us - Advertising Info - Rules - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
 
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: @linuxquestions
Open Source Consulting | Domain Registration