I generally don't trust your regular, run of the mill religious
authority figures, I would be crazy to trust the ones that openly
admit that they are evil.
On 5/16/06, evilrabbi [EMAIL PROTECTED] wrote:
Hello,
In case anyone was having trouble patching the vnc client I've supplied a
patched
Check out flowbits.
The first rule would get flowbits:noalert; flowbits:set,google.user.agent;
And the second rule would get flowbits:isset,google.user.agent;
That way the alert for the first rule would be suppressed and the
second rule would only trigger if the first one occured previously.
On
I believe it is per TCP session, but don't quote me on that. Actually
now that i think about it, if it indeed is per TCP session then the
second rule will not trigger, since the SSL connection will be a part
of a different session.
I am not 100% sure though. Try it out and let us know. You
