On Mon, 2003-02-17 at 05:47, Michael Rash wrote: > The attached patch adds an option "--hex-string" to the string match > module to allow snort-style hex strings to be specified on the > command line. This is useful because there are many signatures that > consist of non-printable characters and without this patch there is > no way to easily tell iptables to search for them. Please send patches to the netfilter-devel@lists.netfilter.org list, not too many developers read this list on a regular basis and might miss patches. I've been working a little with a patch from Gianni Tedesco to speed things up (it really speeds up the stringmatch) and adding support for ranges to it (which bytes to search in the packet). I'll add your patch to the mix when I get some time to play with this stuff again (might be a while). -- /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience.
