Date: Thu, 8 Mar 2001 12:35:47 -0500 (EST) From: Peter Brezny <peter@black.purplecat.net> To: freebsd-security@freebsd.org Subject: New to Snort. Message-ID: <Pine.BSF.4.05.10103081233130.27988-100000@black.purplecat.net>
next in thread | raw e-mail | index | archive | help
I'm new to using snort, and would like to know if this is the appropriate place to ask questions about the allert logs it generates. For example, What does all this mean? [**] MISC source port 53 to <1023 [**] 03/08-05:16:23.823888 193.75.177.1:53 -> 209.16.228.148:53 UDP TTL:42 TOS:0x0 ID:54352 IpLen:20 DgmLen:61 Len: 41 =+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+ am i in big trouble? Thanks in advance. Peter Brezny To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.05.10103081233130.27988-100000>