is a network intrusion prevention and detection system (IDS/IPS) combining the benefits of signature, protocol and anomaly-based inspection.
| builtin_stubs.txt (snort3-3.1.28.0) | : | builtin_stubs.txt (snort3-3.1.29.0) |
|---|
| 2:1 | | 2:1 |
| | |
| A tagged packet was logged. | | A tagged packet was logged. |
| | |
| 105:1 | | 105:1 |
| | |
|
| Back orifice traffic detected, unknown direction | | Back Orifice traffic detected, unknown direction |
| | |
| 105:2 | | 105:2 |
| | |
|
| Back orifice client traffic detected | | Back Orifice client traffic detected |
| | |
| 105:3 | | 105:3 |
| | |
|
| Back orifice server traffic detected | | Back Orifice server traffic detected |
| | |
| 105:4 | | 105:4 |
| | |
|
| Back orifice length field >= 1024 bytes | | Back Orifice length field >= 1024 bytes |
| | |
| 106:1 | | 106:1 |
| | |
| Detected fragmented RPC records. | | Detected fragmented RPC records. |
| | |
| 106:2 | | 106:2 |
| | |
| Detected multiple RPC records in the packet. | | Detected multiple RPC records in the packet. |
| | |
| 106:3 | | 106:3 |
| | |
| skipping to change at line 734 | | skipping to change at line 734 |
|---|
| | |
| The IPv6 mobility header includes an invalid value for the payload protocol fiel
d. | | The IPv6 mobility header includes an invalid value for the payload protocol fiel
d. |
| | |
| 119:1 | | 119:1 |
| | |
| URI has percent encoding of an unreserved character. The ignore_unreserved optio
n designates | | URI has percent encoding of an unreserved character. The ignore_unreserved optio
n designates |
| specific unreserved characters that are exempted from triggering this alert. | | specific unreserved characters that are exempted from triggering this alert. |
| | |
| 119:2 | | 119:2 |
| | |
|
| URI is percent encoded and the result is percent encoded again. This alert can o
nly be generated if | | URI contains double-encoded hexadecimal characters. This alert can only be gener
ated if |
| the iis_double_decode option is configured. | | the iis_double_decode option is configured. |
| | |
| 119:3 | | 119:3 |
| | |
| URI has non-standard %u-style Unicode encoding. This alert can only be generated
if the percent_u | | URI has non-standard %u-style Unicode encoding. This alert can only be generated
if the percent_u |
| option is configured. | | option is configured. |
| | |
| 119:4 | | 119:4 |
| | |
| URI has Unicode encodings containing bytes that were not percent-encoded as requ
ired by the HTTP | | URI has Unicode encodings containing bytes that were not percent-encoded as requ
ired by the HTTP |
| | |
| skipping to change at line 767 | | skipping to change at line 767 |
|---|
| configured. | | configured. |
| | |
| 119:8 | | 119:8 |
| | |
| URI path contains consecutive slash characters which are redundant. This alert c
an only be | | URI path contains consecutive slash characters which are redundant. This alert c
an only be |
| generated if the simplify_path option is configured. | | generated if the simplify_path option is configured. |
| | |
| 119:9 | | 119:9 |
| | |
| The backslash character appears in the path portion of a URI. This alert can onl
y be generated if | | The backslash character appears in the path portion of a URI. This alert can onl
y be generated if |
|
| the backslash_to_slash option is configured. | | the backslash_to_slash option is configured |
| | |
| 119:10 | | 119:10 |
| | |
| URI path contains "/./" pattern repeating the current directory. Alternatively t
he path may end | | URI path contains "/./" pattern repeating the current directory. Alternatively t
he path may end |
| with "/." repeating the current directory. This alert can only be generated if t
he simplify_path | | with "/." repeating the current directory. This alert can only be generated if t
he simplify_path |
| option is configured. | | option is configured. |
| | |
| 119:11 | | 119:11 |
| | |
| URI path contains "/../" pattern moving upward a directory. Alternatively the pa
th may end with | | URI path contains "/../" pattern moving upward a directory. Alternatively the pa
th may end with |
| | |
| skipping to change at line 1366 | | skipping to change at line 1366 |
|---|
| 121:13 | | 121:13 |
| | |
| Invalid HTTP/2 frame sequence. Frame type is not valid for current stream state. | | Invalid HTTP/2 frame sequence. Frame type is not valid for current stream state. |
| | |
| 121:14 | | 121:14 |
| | |
| HTTP/2 dynamic table has more than 512 entries | | HTTP/2 dynamic table has more than 512 entries |
| | |
| 121:15 | | 121:15 |
| | |
|
| HTTP/2 push promise frame with promised stream ID already in use. | | HTTP/2 push promise frame with promised stream ID already in use |
| | |
| 121:16 | | 121:16 |
| | |
| HTTP/2 padding length is bigger than frame data size | | HTTP/2 padding length is bigger than frame data size |
| | |
| 121:17 | | 121:17 |
| | |
| HTTP/2 pseudo-header after regular header | | HTTP/2 pseudo-header after regular header |
| | |
| 121:18 | | 121:18 |
| | | |
| End of changes. 7 change blocks. |
|---|
| 7 lines changed or deleted | | 7 lines changed or added |
|---|
"Fossies" - the Fresh Open Source Software Archive 