mintak maaf tuk penghulu On Fri, Oct 8, 2010 at 11:51 AM, Muhammad Najmi Ahmad Zabidi < [email protected]> wrote:
> -tegurang utk yg tanya soalang > > (gurau je nih hahah) > > On Fri, Oct 8, 2010 at 11:47 AM, Hasanuddin Abu Bakar > <[email protected]> wrote: > > Sori bro,orang menanya saya menjawap > > > > Sent from Cyanogenmod Desire > > > > On 8 Oct 2010 11:45, "Muhammad Najmi Ahmad Zabidi" < > [email protected]> > > wrote: > >> ni bincang pasal IDS ke pasal scam ni, confuse jap. > >> bukan takleh bukak topik baru > >> > >> On Fri, Oct 8, 2010 at 11:14 AM, Hasanuddin Abu Bakar > >> <[email protected]> wrote: > >>> > >>> > >>> On Fri, Oct 8, 2010 at 10:59 AM, Mohd Harpizi Anuar <[email protected]> > >>> wrote: > >>>> > >>>> IDS detect this alert but nothing wrong with related server....I just > >>>> want > >>>> > >>>> to know is it because this server or application on this server have > mis > >>>> configuration such as programming or server setting that can be > >>>> possibility > >>>> cause this alert. > >>> > >>> That's why we need to calibrate IDS. Initially IDS need to run in test > >>> mode > >>> and monitor the alert it produces and justify which one is true or > false > >>> positive so you can disable the alert. False positive alarm WILL raise > no > >>> matter how secure your network is because of web applications or > >>> non-standard communication protocols. If you want to see what I mean, > >>> setup > >>> a standard snort gateway and open www.bharian.com.my within your > client > >>> and > >>> snort will warn you that bharian is trying to hijack your connection, > and > >>> this is an example of false positive alert. > >>> Post Script: IDS is not plug and play system > >>> > >>> > >>>> > >>>> > >>>> > >>>> Faizul > >>>> <fai...@mysecurit > >>>> y.my> > >>>> To > >>>> Sent by: "Open Web Application Security > >>>> owasp-malaysia-bo Project (OWASP) Malaysia Local > >>>> [email protected] Chapter" > >>>> .org <[email protected] > > > >>>> > >>>> cc > >>>> > >>>> 08/10/2010 10:54 > >>>> Subject > >>>> Re: [Owasp-Malaysia] Email Scam > In > >>>> Malay > >>>> Please respond to > >>>> "Open Web > >>>> Application > >>>> Security Project > >>>> \(OWASP\) > >>>> Malaysia Local > >>>> Chapter" > >>>> <owasp-malay...@l > >>>> ists.owasp.org> > >>>> > >>>> > >>>> > >>>> > >>>> > >>>> > >>>> boleh terangkan di mana silapnya ? > >>>> > >>>> On Fri, Oct 8, 2010 at 10:13 AM, Hasanuddin Abu Bakar < > >>>> [email protected]> wrote: > >>>> On Fri, Oct 8, 2010 at 9:57 AM, Mohd Harpizi Anuar <[email protected]> > >>>> wrote: > >>>> Hi...Salam perkenalan..... > >>>> Saya ni budak baru belajar...ada tak sesiapa yang boleh bagi info > >>>> pasal > >>>> TCP > >>>> Hijack false positive alert...dan apa puncanya > >>>> Thanks > >>>> > >>>> False positive alert maksudnya amaran yang salah/silap. > >>>> > >>>> > >>>> > >>>> > >>>> > >>>> The information in this e-mail and any attachment(s) here to is only > >>>> for > >>>> the use of the intended recipient and may be confidential or > >>>> privileged. > >>>> If you are not the intended recipient, any use of, reliance on, > >>>> reference to, disclosure of, alteration to or copying of the > >>>> information > >>>> for any purpose is prohibited. Any information not related to BNM's > >>>> official business is solely the author's and does not necessarily > >>>> represent BNM's view and is not necessarily endorsed by BNM. BNM > shall > >>>> not be liable for loss or damage caused by viruses transmitted by > this > >>>> e-mail or its attachments. BNM is not responsible for any > unauthorised > >>>> changes made to the information or for the effect of such changes. > >>>> > >>>> _______________________________________________ > >>>> Owasp-Malaysia mailing list > >>>> [email protected] > >>>> https://lists.owasp.org/mailman/listinfo/owasp-malaysia > >>>> > >>>> OWASP Malaysia Wiki > >>>> http://www.owasp.org/index.php/Malaysia > >>>> > >>>> OWASP Malaysia Wiki Facebook > >>>> > >>>> > http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420 > >>>> > >>>> > >>>> > >>>> -- > >>>> Hasanuddin Abu Bakar > >>>> GSEC #28858 > >>>> IT Security Engineer > >>>> +6017 913 1983 > >>>> > >>>> Sigma Rectrix Systems (M) Sdn Bhd > >>>> No.15 & 15-1, Jalan Equine 9A, > >>>> Equine Park, Bandar Putra Permai > >>>> 43300 Seri Kembangan Selangor > >>>> URL : www.sigmarectrix.com > >>>> > >>>> Phone : 03-89486696 > >>>> Fax : 03-89487796 > >>>> Helpdesk : 03-89486596 > >>>> > >>>> > >>>> _______________________________________________ > >>>> Owasp-Malaysia mailing list > >>>> [email protected] > >>>> https://lists.owasp.org/mailman/listinfo/owasp-malaysia > >>>> > >>>> OWASP Malaysia Wiki > >>>> http://www.owasp.org/index.php/Malaysia > >>>> > >>>> OWASP Malaysia Wiki Facebook > >>>> > http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420 > >>>> > >>>> > >>>> > >>>> -- > >>>> 73 de 9W2PJU > >>>> > >>>> http://9w2pju.hamradio.my > >>>> > >>>> _______________________________________________ > >>>> Owasp-Malaysia mailing list > >>>> [email protected] > >>>> https://lists.owasp.org/mailman/listinfo/owasp-malaysia > >>>> > >>>> OWASP Malaysia Wiki > >>>> http://www.owasp.org/index.php/Malaysia > >>>> > >>>> OWASP Malaysia Wiki Facebook > >>>> > http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420 > >>>> > >>>> > >>>> The information in this e-mail and any attachment(s) here to is only > for > >>>> the use of the intended recipient and may be confidential or > privileged. > >>>> If > >>>> you are not the intended recipient, any use of, reliance on, reference > >>>> to, > >>>> disclosure of, alteration to or copying of the information for any > >>>> purpose > >>>> is prohibited. Any information not related to BNM's official business > is > >>>> solely the author's and does not necessarily represent BNM's view and > is > >>>> not > >>>> necessarily endorsed by BNM. BNM shall not be liable for loss or > damage > >>>> caused by viruses transmitted by this e-mail or its attachments. BNM > is > >>>> not > >>>> responsible for any unauthorised changes made to the information or > for > >>>> the > >>>> effect of such changes. > >>>> > >>>> _______________________________________________ > >>>> Owasp-Malaysia mailing list > >>>> [email protected] > >>>> https://lists.owasp.org/mailman/listinfo/owasp-malaysia > >>>> > >>>> OWASP Malaysia Wiki > >>>> http://www.owasp.org/index.php/Malaysia > >>>> > >>>> OWASP Malaysia Wiki Facebook > >>>> > http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420 > >>> > >>> > >>> > >>> -- > >>> Hasanuddin Abu Bakar > >>> GSEC #28858 > >>> IT Security Engineer > >>> +6017 913 1983 > >>> > >>> Sigma Rectrix Systems (M) Sdn Bhd > >>> No.15 & 15-1, Jalan Equine 9A, > >>> Equine Park, Bandar Putra Permai > >>> 43300 Seri Kembangan Selangor > >>> URL : www.sigmarectrix.com > >>> > >>> Phone : 03-89486696 > >>> Fax : 03-89487796 > >>> Helpdesk : 03-89486596 > >>> > >>> > >>> _______________________________________________ > >>> Owasp-Malaysia mailing list > >>> [email protected] > >>> https://lists.owasp.org/mailman/listinfo/owasp-malaysia > >>> > >>> OWASP Malaysia Wiki > >>> http://www.owasp.org/index.php/Malaysia > >>> > >>> OWASP Malaysia Wiki Facebook > >>> > http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420 > >>> > >> _______________________________________________ > >> Owasp-Malaysia mailing list > >> [email protected] > >> https://lists.owasp.org/mailman/listinfo/owasp-malaysia > >> > >> OWASP Malaysia Wiki > >> http://www.owasp.org/index.php/Malaysia > >> > >> OWASP Malaysia Wiki Facebook > >> http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420 > > > > _______________________________________________ > > Owasp-Malaysia mailing list > > [email protected] > > https://lists.owasp.org/mailman/listinfo/owasp-malaysia > > > > OWASP Malaysia Wiki > > http://www.owasp.org/index.php/Malaysia > > > > OWASP Malaysia Wiki Facebook > > http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420 > > > _______________________________________________ > Owasp-Malaysia mailing list > [email protected] > https://lists.owasp.org/mailman/listinfo/owasp-malaysia > > OWASP Malaysia Wiki > http://www.owasp.org/index.php/Malaysia > > OWASP Malaysia Wiki Facebook > http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420 > -- 73 de 9W2PJU http://9w2pju.hamradio.my
_______________________________________________ Owasp-Malaysia mailing list [email protected] https://lists.owasp.org/mailman/listinfo/owasp-malaysia OWASP Malaysia Wiki http://www.owasp.org/index.php/Malaysia OWASP Malaysia Wiki Facebook http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420
