Hi "dude",
Try:
log tcp any any <> 10.1.2.3 23 (session: printable;)
log tcp any any <> any 6667 (session: printable;)
(in snort.conf or local.rules of course....)
maarten
From: "aron_dude" <aron_dude@yahoo.com>
> does anyone know how to set snort to become a sniffer
> like sniffing irc sessions and paswords from logins?
------------------------------------------------------------------------
To unsubscribe email security-discuss-request@linuxsecurity.com
with "unsubscribe" in the subject of the message.
