adrockk Contributor.
Contributor.
583 views

I was getting the shakes...

I couldn't access NNTP from work anymore! I thought someone put the
kibosh on it upstream, and made them chase down a red herring for a few
hours (days?). Anyway, it was my stupid astaro box and it's "intrustion
protection"...
This lovely snort rule:
alert tcp $EXTERNAL_NET 119 -> $HOME_NET any (msg:"A NNTP XHDR buffer
overflow attempt"; gid:3; classtype:attempted-user; metadata: engine
shared, soid 3|12636; sid:50012636;)
seems to think anything coming in from port 119 is the devil, all
because lookout express has a buffer overflow exploit.

Anyway, crisis averted. I can now successfuly waste the remainder of my
time at work.

Labels (1)
0 Likes
1 Reply
Sewermonger Absent Member.
Absent Member.

Re: I was getting the shakes...

We now have internet police and a lot of "access denied" windows are appearing (advertising sidebars) heheheheh I like it.
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.