On Feb 17, 2003, Martin Josefsson wrote: > On Mon, 2003-02-17 at 05:47, Michael Rash wrote: > > The attached patch adds an option "--hex-string" to the string match > > module to allow snort-style hex strings to be specified on the > > command line. This is useful because there are many signatures that > > consist of non-printable characters and without this patch there is > > no way to easily tell iptables to search for them. > > Please send patches to the netfilter-devel@lists.netfilter.org list, not > too many developers read this list on a regular basis and might miss > patches. Got it. Will do. > I've been working a little with a patch from Gianni Tedesco to speed > things up (it really speeds up the stringmatch) and adding support for > ranges to it (which bytes to search in the packet). I'll add your patch > to the mix when I get some time to play with this stuff again (might be > a while). Ok, cool. --Mike Michael Rash http://www.cipherdyne.com Key fingerprint = 4EE3 816C 413A 41AA 72C8 4463 70C3 783C 1B91 F85E
