Buy or Renew
Buy or Renew
COMING SOON: Umbrella and Secure Access release notes are coming to Cisco Community. The community will be in read-only August 16 – 19. Learn more.
jballay
Level 1
Level 1
Member since ‎05-11-2001
‎08-18-2017
Recent Badges
Awards

User Statistics

  • 32 Posts
  • 0 Solutions
  • 0 Helpful votes Given
  • 0 Helpful votes Received
Recent Badges
See all
10 Replies
5 Replies

User Activity

Problem with Sig ID 2156:Nachi Worm ICMP Echo Request?

10-01-2003
We're experiencing a problem with Sig ID 2156, the Nachi Worm ICMP Echo Request signature. The problem we're seeing is once the signature fires, the destination IP address in the alarm is actually the machine that's infected with Nachi and the sourc...

Error msg when running sysconfig-sensor

01-17-2003
I'm trying to run sysconfig-sensor and get an error msg after I enter the values for option 6, communications infrastructure. The error basically says the eventd.conf file cannot be modified because it's a read only file system. Please see below fo...

Looking for custom sig for new CERT advisory CA-2002-33

11-25-2002
Does anyone have a sig to apply for this advisory?"CERT Advisory CA-2002-33 Heap Overflow Vulnerability in Microsoft DataAccess Components (MDAC)"I'm not sure if signatures 5070 or 5071 would really address it.

Does anyone know a good resource to refer to for reporting attacks?

09-16-2002
I'm really in search of the answers to a few questions. Thought I'd post it here and see what you have to say. Here goes......What could you use from a 4210 in the way of log files to report malicious activity to abuse@whoever.com? What do you have...

String match for SQLspida ???

05-22-2002
Could anyone share a possible string match entry to alarm on the SQL worm that's in the wild? Thanks a bunch.
View more
Community Statistics
Member Since ‎05-11-2001 09:54 AM
Date Last Visited ‎08-18-2017 03:50 AM
Posts 32