This morning at 5.16am Up2Date 7.6 package description:
RPM packages contained: u2d-ohelp7-7.3-6.patch.rpm
was installed since this time all my intrusion detection emails are garbage.
Intrusion Prevention Alert
An intrusion has been detected. The packet has been dropped automatically.
You can toggle this rule between "drop" and "alert only" in WebAdmin.
Details about the intrusion alert:
Message........: $MESSAGE
Details........: www.snort.org/.../$SID
Time...........: $TIMESTAMP
Packet dropped.: $DROPPED
Priority.......: $PRIORITY
Classification.: $CLASSIFICATION
IP protocol....: $PROTOCOL
Source IP address: $SRC_IP $SRC_HOST
- www.dnsstuff.com/.../ptr.ch
- www.ripe.net/.../whois
- ws.arin.net/.../whois.pl
- cgi.apnic.net/.../whois.pl
$SRC_PORT
Destination IP address: $DST_IP $DST_HOST
- www.dnsstuff.com/.../ptr.ch
- www.ripe.net/.../whois
- ws.arin.net/.../whois.pl
- cgi.apnic.net/.../whois.pl
$DST_PORT
Update issue or something else?
This thread was automatically locked due to age.
