alert tcp $EXTERNAL_NET any -> $HOME_NET $FTP_PORT (msg:"[VSFTPD-GEOIP] Authentication successful from outside HOME_COUNTRY"; content: "OK LOGIN"; classtype: successful-user; program: vsftpd; country_code: track by_src, isnot $HOME_COUNTRY; reference: url,wiki.quadrantsec.com/bin/view/Main/5002387; sid:5002387; rev:1;)
-- Main.Sagan-Wiki-Add - 2015-10-21 New revisions of 5002387 will be below...
Edit | Attach | Topic revision: r1 - 2015-10-21 - Sagan-Wiki-Add
Site map
Main web
Users
Groups
Index
Search
Changes
Notifications
RSS Feed
Statistics
Preferences
Copyright © 2008-2019 by the contributing authors. All material on this collaboration platform is the property of the contributing authors. Ideas, requests, problems regarding TWiki? Send feedback