About scruggss

scruggss · 02-22-2005

I'm having an issue with signatures not firing correctly. Some of the backdoor trojan signatures are firing, the NSDB says that it is looking for a certain string in the packet going over a certain port. This has happened on several signatures. I get...

scruggss · 12-08-2004

Has anyone had problems with the upgrade to IDS MC 2.0? I installed this on my testbed and the Management Center came up okay, but the Security Monitor would not come up. I re-installed it and nothing would work.Any suggestions would be greatly appr...

scruggss · 12-06-2004

We are facing an issue where we are required to upgrade Apache server on our IDS MC system. The system is currently running 1.3.27 and we are required to go to 1.3.33. I'm pretty sure that I cannot just upgrade Apache, so I was wondering if the 2.0...

scruggss · 09-14-2004

I've encountered an issue in IDS MC and my 4250 sensors. Whenever I push a new config out through IDS MC (signature update, filter change, etc.) all the tuned signatures revert to the default built-in state.If anyone has encountered something simila...

scruggss · 02-22-2005

The signatures that are firing (at least today) are 9546 and 9476. The traffic seems to be FTP data (source or destination port 20). The most common instance we have is for virus and trojan signatures and 99% of the time is FTP data.Any assistance wo...

scruggss · 12-14-2004

I also noticed yesterday that the 2.0 upgrade to IDS MC has been pulled off of the website. I did not see an annoucement of this anywhere. Do you know a reason it was pulled?

scruggss · 12-09-2004

Nadeem,Thanks for the info. I came to the same conclusion when I upgraded our testbed IDS system. Is there a timeframe for when 2.3 will be released?-Steve

scruggss · 10-25-2004

Mike, The log function on the signatures refers to an IP log (you have to log into the sensor via web interface or command line to see them). I have not been able to find a way to enable the log function on all signatures without having to go into ea...

scruggss · 10-25-2004

IDS 4250 runs Red Hat Linux 7.2. It should say when booting the sensor. You can also confirm by logging in with the Service account. Default user name and password is service service. If you service account does not exist, log in with the root (cisco...

Member Since	‎04-27-2004 08:25 AM
Date Last Visited	‎08-18-2017 03:51 AM
Posts	15

User Statistics

User Activity

Signatures not firing correctly

Issues with IDS MC 2.0 upgrade

Question about 2.0 Upgrade

Updating Config through IDS MC causes tuned signatures to revert

Re: Signatures not firing correctly

Re: Issues with IDS MC 2.0 upgrade

Re: Question about 2.0 Upgrade

Re: Logging Events in Security Monitor

Re: Source code of OS kernel for IDS