"Fossies" - the Fresh Open Source Software Archive  

Source code changes of the file "preproc_rules/preprocessor.rules" between
snort-2.9.16.1.tar.gz and snort-2.9.17.tar.gz

About: Snort is a network intrusion prevention and detection system (IDS/IPS) combining the benefits of signature, protocol and anomaly-based inspection.

[ To the main snort source changes report ]

preprocessor.rules  (snort-2.9.16.1):preprocessor.rules  (snort-2.9.17)
skipping to change at line 49 skipping to change at line 49
alert ( msg: "HI_CLIENT_EXCEEDS_SPACES"; sid:26; gid: 119; rev: 1; metadata: rul e-type preproc ; classtype:attempted-dos;reference:cve,2004-0942; ) alert ( msg: "HI_CLIENT_EXCEEDS_SPACES"; sid:26; gid: 119; rev: 1; metadata: rul e-type preproc ; classtype:attempted-dos;reference:cve,2004-0942; )
alert ( msg: "HI_CLIENT_CONSECUTIVE_SMALL_CHUNK_SIZES"; sid: 27; gid: 119; rev: 1; metadata: rule-type preproc ; classtype:unknown; ) alert ( msg: "HI_CLIENT_CONSECUTIVE_SMALL_CHUNK_SIZES"; sid: 27; gid: 119; rev: 1; metadata: rule-type preproc ; classtype:unknown; )
alert ( msg: "HI_CLIENT_UNBOUNDED POST"; sid: 28; gid: 119; rev: 1; metadata: ru le-type preproc ; classtype:unknown; ) alert ( msg: "HI_CLIENT_UNBOUNDED POST"; sid: 28; gid: 119; rev: 1; metadata: ru le-type preproc ; classtype:unknown; )
alert ( msg: "HI_CLIENT_MULTIPLE_TRUEIP_IN_SESSION"; sid: 29; gid: 119; rev: 1; metadata: rule-type preproc ; classtype:unknown; ) alert ( msg: "HI_CLIENT_MULTIPLE_TRUEIP_IN_SESSION"; sid: 29; gid: 119; rev: 1; metadata: rule-type preproc ; classtype:unknown; )
alert ( msg: "HI_CLIENT_BOTH_TRUEIP_XFF_HDRS"; sid: 30; gid: 119; rev: 1; metada ta: rule-type preproc ; classtype:unknown; ) alert ( msg: "HI_CLIENT_BOTH_TRUEIP_XFF_HDRS"; sid: 30; gid: 119; rev: 1; metada ta: rule-type preproc ; classtype:unknown; )
alert ( msg: "HI_CLIENT_UNKNOWN_METHOD"; sid: 31; gid: 119; rev: 1; metadata: ru le-type preproc ; classtype:unknown; ) alert ( msg: "HI_CLIENT_UNKNOWN_METHOD"; sid: 31; gid: 119; rev: 1; metadata: ru le-type preproc ; classtype:unknown; )
alert ( msg: "HI_CLIENT_SIMPLE_REQUEST"; sid: 32; gid: 119; rev: 1; metadata: ru le-type preproc ; classtype:unknown; ) alert ( msg: "HI_CLIENT_SIMPLE_REQUEST"; sid: 32; gid: 119; rev: 1; metadata: ru le-type preproc ; classtype:unknown; )
alert ( msg: "HI_CLIENT_UNESCAPED_SPACE_URI"; sid: 33; gid: 119; rev: 1; metadat a: rule-type preproc ; classtype:unknown; ) alert ( msg: "HI_CLIENT_UNESCAPED_SPACE_URI"; sid: 33; gid: 119; rev: 1; metadat a: rule-type preproc ; classtype:unknown; )
alert ( msg: "HI_CLIENT_PIPELINE_MAX "; sid: 34; gid: 119; rev: 1; metadata: rul e-type preproc ; classtype:unknown; ) alert ( msg: "HI_CLIENT_PIPELINE_MAX "; sid: 34; gid: 119; rev: 1; metadata: rul e-type preproc ; classtype:unknown; )
alert ( msg: "HI_CLIENT_MULTIPLE_COLON_BETN_KEY_VALUE"; sid: 35; gid: 119; rev: 1; metadata: rule-type preproc ; classtype:unknown; ) alert ( msg: "HI_CLIENT_MULTIPLE_COLON_BETN_KEY_VALUE"; sid: 35; gid: 119; rev: 1; metadata: rule-type preproc ; classtype:unknown; )
alert ( msg: "HI_CLIENT_INVALID_RANGE_UNIT_FMT"; sid: 36; gid: 119; rev: 1; meta
data: rule-type preproc ; classtype:unknown; )
alert ( msg: "HI_CLIENT_RANGE_NON_GET_METHOD"; sid: 37; gid: 119; rev: 1; metada
ta: rule-type preproc ; classtype:unknown; )
alert ( msg: "HI_CLIENT_RANGE_FIELD_ERROR"; sid: 38; gid: 119; rev: 1; metadata:
rule-type preproc ; classtype:unknown; )
alert ( msg: "HI_ANOM_SERVER_ALERT"; sid: 1; gid: 120; rev: 1; metadata: rule-ty pe preproc, service http ; classtype:unknown; ) alert ( msg: "HI_ANOM_SERVER_ALERT"; sid: 1; gid: 120; rev: 1; metadata: rule-ty pe preproc, service http ; classtype:unknown; )
alert ( msg: "HI_SERVER_INVALID_STATCODE"; sid: 2; gid: 120; rev: 1; metadata: r ule-type preproc ; classtype:unknown; ) alert ( msg: "HI_SERVER_INVALID_STATCODE"; sid: 2; gid: 120; rev: 1; metadata: r ule-type preproc ; classtype:unknown; )
alert ( msg: "HI_SERVER_NO_CONTLEN"; sid: 3; gid: 120; rev: 1; metadata: rule-ty pe preproc ; classtype:unknown; ) alert ( msg: "HI_SERVER_NO_CONTLEN"; sid: 3; gid: 120; rev: 1; metadata: rule-ty pe preproc ; classtype:unknown; )
alert ( msg: "HI_SERVER_UTF_NORM_FAIL"; sid: 4; gid: 120; rev: 1; metadata: rule -type preproc ; classtype:unknown; ) alert ( msg: "HI_SERVER_UTF_NORM_FAIL"; sid: 4; gid: 120; rev: 1; metadata: rule -type preproc ; classtype:unknown; )
alert ( msg: "HI_SERVER_UTF7"; sid: 5; gid: 120; rev: 1; metadata: rule-type pre proc ; classtype:unknown; ) alert ( msg: "HI_SERVER_UTF7"; sid: 5; gid: 120; rev: 1; metadata: rule-type pre proc ; classtype:unknown; )
alert ( msg: "HI_SERVER_DECOMPR_FAILED"; sid: 6; gid: 120; rev: 1; metadata: rul e-type preproc ; classtype:unknown; ) alert ( msg: "HI_SERVER_DECOMPR_FAILED"; sid: 6; gid: 120; rev: 1; metadata: rul e-type preproc ; classtype:unknown; )
alert ( msg: "HI_SERVER_CONSECUTIVE_SMALL_CHUNK_SIZES"; sid: 7; gid: 120; rev: 1 ; metadata: rule-type preproc ; classtype:unknown; ) alert ( msg: "HI_SERVER_CONSECUTIVE_SMALL_CHUNK_SIZES"; sid: 7; gid: 120; rev: 1 ; metadata: rule-type preproc ; classtype:unknown; )
alert ( msg: "HI_CLISRV_MSG_SIZE_EXCEPTION"; sid: 8; gid: 120; rev: 1; metadata: rule-type preproc ; classtype:unknown; ) alert ( msg: "HI_CLISRV_MSG_SIZE_EXCEPTION"; sid: 8; gid: 120; rev: 1; metadata: rule-type preproc ; classtype:unknown; )
alert ( msg: "HI_SERVER_JS_OBFUSCATION_EXCD"; sid: 9; gid: 120; rev: 1; metadata : rule-type preproc ; classtype:unknown; ) alert ( msg: "HI_SERVER_JS_OBFUSCATION_EXCD"; sid: 9; gid: 120; rev: 1; metadata : rule-type preproc ; classtype:unknown; )
alert ( msg: "HI_SERVER_JS_EXCESS_WS"; sid: 10; gid: 120; rev: 1; metadata: rule -type preproc ; classtype:unknown; ) alert ( msg: "HI_SERVER_JS_EXCESS_WS"; sid: 10; gid: 120; rev: 1; metadata: rule -type preproc ; classtype:unknown; )
skipping to change at line 78 skipping to change at line 81
alert ( msg: "HI_SERVER_MULTIPLE_CONTENT_ENCODING"; sid:20; gid: 120; rev: 1; me tadata: rule-type preproc ; classtype:unknown; ) alert ( msg: "HI_SERVER_MULTIPLE_CONTENT_ENCODING"; sid:20; gid: 120; rev: 1; me tadata: rule-type preproc ; classtype:unknown; )
alert ( msg: "HI_SERVER_MULTIPLE_COLON_BETN_KEY_VALUE"; sid: 21; gid: 120; rev: 1; metadata: rule-type preproc ; classtype:unknown; ) alert ( msg: "HI_SERVER_MULTIPLE_COLON_BETN_KEY_VALUE"; sid: 21; gid: 120; rev: 1; metadata: rule-type preproc ; classtype:unknown; )
alert ( msg: "HI_SERVER_INVALID_CHAR_BETN_KEY_VALUE"; sid: 22; gid: 120; rev: 1; metadata: rule-type preproc ; classtype:bad-unknown; ) alert ( msg: "HI_SERVER_INVALID_CHAR_BETN_KEY_VALUE"; sid: 22; gid: 120; rev: 1; metadata: rule-type preproc ; classtype:bad-unknown; )
alert ( msg: "HI_CLISRV_INVALID_CHUNKED"; sid: 23; gid: 120; rev: 1; metadata: r ule-type preproc ; classtype:bad-unknown; ) alert ( msg: "HI_CLISRV_INVALID_CHUNKED"; sid: 23; gid: 120; rev: 1; metadata: r ule-type preproc ; classtype:bad-unknown; )
alert ( msg: "HI_SERVER_PARTIAL_DECOMPRESSION_FAIL"; sid: 24; gid: 120; rev: 1; metadata: rule-type preproc ; classtype:bad-unknown; ) alert ( msg: "HI_SERVER_PARTIAL_DECOMPRESSION_FAIL"; sid: 24; gid: 120; rev: 1; metadata: rule-type preproc ; classtype:bad-unknown; )
alert ( msg: "HI_SERVER_INVALID_HEADER_FOLDING"; sid:25; gid:120; rev: 1; metada ta: rule-type preproc ; classtype:bad-unknown; ) alert ( msg: "HI_SERVER_INVALID_HEADER_FOLDING"; sid:25; gid:120; rev: 1; metada ta: rule-type preproc ; classtype:bad-unknown; )
alert ( msg: "HI_SERVER_JUNK_LINE_BEFORE_RESP_HEADER"; sid: 26; gid: 120; rev: 1 ; metadata: rule-type preproc ; classtype:bad-unknown; ) alert ( msg: "HI_SERVER_JUNK_LINE_BEFORE_RESP_HEADER"; sid: 26; gid: 120; rev: 1 ; metadata: rule-type preproc ; classtype:bad-unknown; )
alert ( msg: "HI_EO_SERVER_NO_RESP_HEADER_END"; sid: 27; gid: 120; rev: 1; metad ata: rule-type preproc ; classtype:bad-unknown; ) alert ( msg: "HI_EO_SERVER_NO_RESP_HEADER_END"; sid: 27; gid: 120; rev: 1; metad ata: rule-type preproc ; classtype:bad-unknown; )
alert ( msg: "HI_EO_SERVER_INVALID_CHUNK_SIZE"; sid: 28; gid: 120; rev: 1; metad ata: rule-type preproc ; classtype:bad-unknown; ) alert ( msg: "HI_EO_SERVER_INVALID_CHUNK_SIZE"; sid: 28; gid: 120; rev: 1; metad ata: rule-type preproc ; classtype:bad-unknown; )
drop ( msg: "HI_EO_SERVER_INVALID_VERSION_RESP_HEADER"; sid: 29; gid: 120; rev:1 ; metadata: rule-type preproc ; classtype:non-standard-protocol; ) drop ( msg: "HI_EO_SERVER_INVALID_VERSION_RESP_HEADER"; sid: 29; gid: 120; rev:1 ; metadata: rule-type preproc ; classtype:non-standard-protocol; )
alert ( msg: "HI_SERVER_INVALID_CONTENT_RANGE_UNIT_FMT"; sid: 30; gid: 120; rev:
1; metadata: rule-type preproc ; classtype:unknown; )
alert ( msg: "HI_SERVER_RANGE_FIELD_ERROR"; sid: 31; gid: 120; rev: 1; metadata:
rule-type preproc ; classtype:unknown; )
alert ( msg: "PSNG_TCP_PORTSCAN"; sid: 1; gid: 122; rev: 1; metadata: rule-type preproc ; classtype:attempted-recon; ) alert ( msg: "PSNG_TCP_PORTSCAN"; sid: 1; gid: 122; rev: 1; metadata: rule-type preproc ; classtype:attempted-recon; )
alert ( msg: "PSNG_TCP_DECOY_PORTSCAN"; sid: 2; gid: 122; rev: 1; metadata: rule -type preproc ; classtype:attempted-recon; ) alert ( msg: "PSNG_TCP_DECOY_PORTSCAN"; sid: 2; gid: 122; rev: 1; metadata: rule -type preproc ; classtype:attempted-recon; )
alert ( msg: "PSNG_TCP_PORTSWEEP"; sid: 3; gid: 122; rev: 1; metadata: rule-type preproc ; classtype:attempted-recon; ) alert ( msg: "PSNG_TCP_PORTSWEEP"; sid: 3; gid: 122; rev: 1; metadata: rule-type preproc ; classtype:attempted-recon; )
alert ( msg: "PSNG_TCP_DISTRIBUTED_PORTSCAN"; sid: 4; gid: 122; rev: 1; metadata : rule-type preproc ; classtype:attempted-recon; ) alert ( msg: "PSNG_TCP_DISTRIBUTED_PORTSCAN"; sid: 4; gid: 122; rev: 1; metadata : rule-type preproc ; classtype:attempted-recon; )
alert ( msg: "PSNG_TCP_FILTERED_PORTSCAN"; sid: 5; gid: 122; rev: 1; metadata: r ule-type preproc ; classtype:attempted-recon; ) alert ( msg: "PSNG_TCP_FILTERED_PORTSCAN"; sid: 5; gid: 122; rev: 1; metadata: r ule-type preproc ; classtype:attempted-recon; )
alert ( msg: "PSNG_TCP_FILTERED_DECOY_PORTSCAN"; sid: 6; gid: 122; rev: 1; metad ata: rule-type preproc ; classtype:attempted-recon; ) alert ( msg: "PSNG_TCP_FILTERED_DECOY_PORTSCAN"; sid: 6; gid: 122; rev: 1; metad ata: rule-type preproc ; classtype:attempted-recon; )
alert ( msg: "PSNG_TCP_PORTSWEEP_FILTERED"; sid: 7; gid: 122; rev: 1; metadata: rule-type preproc ; classtype:attempted-recon; ) alert ( msg: "PSNG_TCP_PORTSWEEP_FILTERED"; sid: 7; gid: 122; rev: 1; metadata: rule-type preproc ; classtype:attempted-recon; )
alert ( msg: "PSNG_TCP_FILTERED_DISTRIBUTED_PORTSCAN"; sid: 8; gid: 122; rev: 1; metadata: rule-type preproc ; classtype:attempted-recon; ) alert ( msg: "PSNG_TCP_FILTERED_DISTRIBUTED_PORTSCAN"; sid: 8; gid: 122; rev: 1; metadata: rule-type preproc ; classtype:attempted-recon; )
alert ( msg: "PSNG_IP_PORTSCAN"; sid: 9; gid: 122; rev: 1; metadata: rule-type p reproc ; classtype:attempted-recon; ) alert ( msg: "PSNG_IP_PORTSCAN"; sid: 9; gid: 122; rev: 1; metadata: rule-type p reproc ; classtype:attempted-recon; )
alert ( msg: "PSNG_IP_DECOY_PORTSCAN"; sid: 10; gid: 122; rev: 1; metadata: rule -type preproc ; classtype:attempted-recon; ) alert ( msg: "PSNG_IP_DECOY_PORTSCAN"; sid: 10; gid: 122; rev: 1; metadata: rule -type preproc ; classtype:attempted-recon; )
 End of changes. 2 change blocks. 
0 lines changed or deleted 10 lines changed or added
To the Configuration Files section of the snort source changes report or the top of this page
Mainly generated by pkgdiff using rfcdiff
Home  |  About  |  Features  |  All  |  Newest  |  Dox  |  Diffs  |  RSS Feeds  |  Screenshots  |  Comments  |  Imprint  |  Privacy  |  HTTP(S)