[olug] Snort message?
Jim O'Gorman
jogorman at gmail.com
Wed Aug 24 18:50:24 UTC 2005
There are more then a few sources of information on this one. Start with:
http://www.cert.org/advisories/CA-2002-17.html
and
http://www.microsoft.com/technet/security/bulletin/MS02-028.mspx
Thanks
Jim
On 8/23/05, Don E. Kauffman <dekauff at cox.net> wrote:
> Can someone clue me into a site where I can get information about this
> snort message?
>
> Date: 08/23 11:52:09
> Name: (http_inspect) OVERSIZE CHUNK ENCODING
> Priority: n/a
> Type: n/a
> IP Info: 68.227.161.196:4506 -> 137.48.1.91:80
> Refs:
>
> I've searched the snort website and googled for (http_inspect) but no
> joy. .. .
>
> This seems to be indicating that an attack is originating from my
> system's IP address? Is this right?
>
> Any assistance with understanding this will be greatly appreciated.
>
> Thanks.
>
> Don Kauffman
> --
> "VISTA is really an acronym for Viruses, Infections, Spyware,
> Trojans, and Adware."
> Quote from R. Cringely, Infoworld writer
>
> _______________________________________________
> OLUG mailing list
> OLUG at olug.org
> http://lists.olug.org/mailman/listinfo/olug
>
--
Jim
jameso at elwood.net
jogorman at gmail.com
http://www.elwood.net
More information about the OLUG
mailing list