tag:blogger.com,1999:blog-4088979.post72316911942441149..comments2023-10-16T06:06:25.012-04:00Comments on TaoSecurity Blog: Snort Report 12 PostedRichard Bejtlichhttp://www.blogger.com/profile/13512184196416665417noreply@blogger.comBlogger4125tag:blogger.com,1999:blog-4088979.post-65743121867421834972008-01-08T11:09:00.000-05:002008-01-08T11:09:00.000-05:00Thanks for the lead! I just asked the same thing ...Thanks for the lead! I just asked the same thing over there.Jaredhttps://www.blogger.com/profile/00540058054460624261noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-55821331490106117702008-01-08T10:20:00.000-05:002008-01-08T10:20:00.000-05:00Richard,I'd love to know why Snort can still not h...Richard,<BR/><BR/>I'd love to know why Snort can still not handle gzip-compressed HTML content. The AV industry seems to have solved this for scanning a file, I'm not sure why Sourcefire cannot for scanning a TCP session. This may impact inline protection, but should at least be available for out-of-band detection, and represents a major detection gap.<BR/><BR/>Rgds,<BR/>MichaelAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-4088979.post-45460260717121970492008-01-08T10:11:00.000-05:002008-01-08T10:11:00.000-05:00Jared,I recommend submitting your question here:ht...Jared,<BR/><BR/>I recommend submitting your question here:<BR/><BR/>http://www.inliniac.net/blog/<BR/><BR/>I agree -- it would be great.Richard Bejtlichhttps://www.blogger.com/profile/13512184196416665417noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-35193847698339007242008-01-08T10:05:00.000-05:002008-01-08T10:05:00.000-05:00I'm a fan of your network security blog.Do you kno...I'm a fan of your network security blog.<BR/><BR/>Do you know of any recent updates about running Snort_inline on a FreeBSD bridge? It's my understanding that FreeBSD as it currently stands isn't capable of sending packets to Snort_inline when the machine is configured as a bridge.<BR/><BR/>It would be an ideal combination!Jaredhttps://www.blogger.com/profile/00540058054460624261noreply@blogger.com