Wireshark · Ethereal-users: RE: [Ethereal-users] identifying bugbear & sobig attacks (how?)

Ethereal-users: RE: [Ethereal-users] identifying bugbear & sobig attacks (how?)

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: "HOOD, Andy" <ahood@xxxxxxxxxxxxxx>

Date: Fri, 12 Sep 2003 10:20:00 +1000

> -----Original Message-----
> From: Mike Kelley
>
> My ultimate goal in bringing up a linux box and using ethereal is to
discover
> which box on my lan is sending the bugbear virus and which has sobig.
>
> Any pointers, footprints, RTFM's ?????
>
 
This is more the sort of thing to do with snort. It can alarm as soon as it
sees suspicious traffic.

Regards,
Andrew Hood
A distributed system is one in which the failure of a computer you didn't
even know existed can render your own computer unusable. -- Leslie Lamport,
as quoted in CACM, June 1992

<<application/ms-tnef>>

Prev by Date: [Ethereal-users] Possible Virus / Trojan / ?????
Next by Date: [Ethereal-users] DCERPC Protocol
Previous by thread: Re: [Ethereal-users] identifying bugbear & sobig attacks (how?)
Next by thread: RE: [Ethereal-users] identifying bugbear & sobig attacks (how?)
Index(es):
- Date
- Thread