I agree.. also anyone who talks about Moderation needs to remember there is a
reason its call Full-disclosure...
its takes like 3 seconds to hit "del" on stuff you dont want to read.. Come on
let us have a little bit of fun it will die down in a while..
You guy's need some cheese to go with th
alert leg $RIGHT_FOOT any -> any toe (msg: "Suspect traffic - Sock hole
exploit";
content:"%48%61%63%6b%69%6e%67%20%74%68%65%20%73%6f%63%6b%20%6d%61%6e%21";
classtype: misc-activity; si
d: 2001842; rev:4; )
alert leg $BOTH_LEGS any -> any foot/toe/leg (msg: "Attempted exploiting of the
toe, so
Wouldn.t the they just go after the "owner" of the public hotspot? The same
way they go after ISP's when they try to tell them it was those "pre-paid"
accounts?
I still find it sickening that my ISP is meant to censor my online activity.
Although in the above case it would have been breaking
Dshield is showing a down swing.. have you got packet captures?
http://isc.sans.org/port_details.php?port=8041&repax=1&tarax=2&srcax=2&percent=N&days=70
On Tue, Aug 23, 2005 at 09:39:39AM +0530, Rajesh wrote:
> Hi All,
>
> Is anyone else seeing a very large increase of SYN packets coming to
>