On Thu, 25 Mar 2004, Joe Mott wrote: > I have been searching the archived lists without any success to have the > following question answered: > > Is netfilter capable of knowing when someone is crafting SMTP (or FTP or > HTTP or ...) packets that violate RFC rules to exploit a vulnerability > in some server? > Hi, what you need is an IDS (intrusion detection system). The most well known are prelude (prelude-ids.org) and snort. Did I mention that I don't trust snort because of too much passed vulnerabilities? Regards Frederic -- < Ylli> lol je rigole neuro jte prend pa pr un pervers ms un president et pere de famille respectable :s http://www.seclab.jp
Attachment:
pgp00836.pgp
Description: PGP signature
