Here's a site to download an iso image of snort running out from a bootable FreeBSD CD to catch Nachi, Blaster & Sobig. Useful for sysadmins who aren't familiar with nixers or aren't yet snorters.
http://www.my-snort.org/downloads/FreeSBIE.ISO The MD5 sum is e24ddb47d6c0ade80c79b53bbe88735b Uid: root Pwd: <none> Alerts stored in /home/alert Tried it out on some networks and it seems to help those who's IDS can't detect these worms. Justin. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
