Sori bro,orang menanya saya menjawap Sent from Cyanogenmod Desire On 8 Oct 2010 11:45, "Muhammad Najmi Ahmad Zabidi" <[email protected]> wrote: > ni bincang pasal IDS ke pasal scam ni, confuse jap. > bukan takleh bukak topik baru > > On Fri, Oct 8, 2010 at 11:14 AM, Hasanuddin Abu Bakar > <[email protected]> wrote: >> >> >> On Fri, Oct 8, 2010 at 10:59 AM, Mohd Harpizi Anuar <[email protected]> wrote: >>> >>> IDS detect this alert but nothing wrong with related server....I just >>> want >>> >>> to know is it because this server or application on this server have mis >>> configuration such as programming or server setting that can be >>> possibility >>> cause this alert. >> >> That's why we need to calibrate IDS. Initially IDS need to run in test mode >> and monitor the alert it produces and justify which one is true or false >> positive so you can disable the alert. False positive alarm WILL raise no >> matter how secure your network is because of web applications or >> non-standard communication protocols. If you want to see what I mean, setup >> a standard snort gateway and open www.bharian.com.my within your client and >> snort will warn you that bharian is trying to hijack your connection, and >> this is an example of false positive alert. >> Post Script: IDS is not plug and play system >> >> >>> >>> >>> >>> Faizul >>> <fai...@mysecurit >>> y.my> To >>> Sent by: "Open Web Application Security >>> owasp-malaysia-bo Project (OWASP) Malaysia Local >>> [email protected] Chapter" >>> .org <[email protected]> >>> cc >>> >>> 08/10/2010 10:54 Subject >>> Re: [Owasp-Malaysia] Email Scam In >>> Malay >>> Please respond to >>> "Open Web >>> Application >>> Security Project >>> \(OWASP\) >>> Malaysia Local >>> Chapter" >>> <owasp-malay...@l >>> ists.owasp.org> >>> >>> >>> >>> >>> >>> >>> boleh terangkan di mana silapnya ? >>> >>> On Fri, Oct 8, 2010 at 10:13 AM, Hasanuddin Abu Bakar < >>> [email protected]> wrote: >>> On Fri, Oct 8, 2010 at 9:57 AM, Mohd Harpizi Anuar <[email protected]> >>> wrote: >>> Hi...Salam perkenalan..... >>> Saya ni budak baru belajar...ada tak sesiapa yang boleh bagi info pasal >>> TCP >>> Hijack false positive alert...dan apa puncanya >>> Thanks >>> >>> False positive alert maksudnya amaran yang salah/silap. >>> >>> >>> >>> >>> >>> The information in this e-mail and any attachment(s) here to is only for >>> the use of the intended recipient and may be confidential or privileged. >>> If you are not the intended recipient, any use of, reliance on, >>> reference to, disclosure of, alteration to or copying of the information >>> for any purpose is prohibited. Any information not related to BNM's >>> official business is solely the author's and does not necessarily >>> represent BNM's view and is not necessarily endorsed by BNM. BNM shall >>> not be liable for loss or damage caused by viruses transmitted by this >>> e-mail or its attachments. BNM is not responsible for any unauthorised >>> changes made to the information or for the effect of such changes. >>> >>> _______________________________________________ >>> Owasp-Malaysia mailing list >>> [email protected] >>> https://lists.owasp.org/mailman/listinfo/owasp-malaysia >>> >>> OWASP Malaysia Wiki >>> http://www.owasp.org/index.php/Malaysia >>> >>> OWASP Malaysia Wiki Facebook >>> http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420 >>> >>> >>> >>> -- >>> Hasanuddin Abu Bakar >>> GSEC #28858 >>> IT Security Engineer >>> +6017 913 1983 >>> >>> Sigma Rectrix Systems (M) Sdn Bhd >>> No.15 & 15-1, Jalan Equine 9A, >>> Equine Park, Bandar Putra Permai >>> 43300 Seri Kembangan Selangor >>> URL : www.sigmarectrix.com >>> >>> Phone : 03-89486696 >>> Fax : 03-89487796 >>> Helpdesk : 03-89486596 >>> >>> >>> _______________________________________________ >>> Owasp-Malaysia mailing list >>> [email protected] >>> https://lists.owasp.org/mailman/listinfo/owasp-malaysia >>> >>> OWASP Malaysia Wiki >>> http://www.owasp.org/index.php/Malaysia >>> >>> OWASP Malaysia Wiki Facebook >>> http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420 >>> >>> >>> >>> -- >>> 73 de 9W2PJU >>> >>> http://9w2pju.hamradio.my >>> >>> _______________________________________________ >>> Owasp-Malaysia mailing list >>> [email protected] >>> https://lists.owasp.org/mailman/listinfo/owasp-malaysia >>> >>> OWASP Malaysia Wiki >>> http://www.owasp.org/index.php/Malaysia >>> >>> OWASP Malaysia Wiki Facebook >>> http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420 >>> >>> >>> The information in this e-mail and any attachment(s) here to is only for >>> the use of the intended recipient and may be confidential or privileged. If >>> you are not the intended recipient, any use of, reliance on, reference to, >>> disclosure of, alteration to or copying of the information for any purpose >>> is prohibited. Any information not related to BNM's official business is >>> solely the author's and does not necessarily represent BNM's view and is not >>> necessarily endorsed by BNM. BNM shall not be liable for loss or damage >>> caused by viruses transmitted by this e-mail or its attachments. BNM is not >>> responsible for any unauthorised changes made to the information or for the >>> effect of such changes. >>> >>> _______________________________________________ >>> Owasp-Malaysia mailing list >>> [email protected] >>> https://lists.owasp.org/mailman/listinfo/owasp-malaysia >>> >>> OWASP Malaysia Wiki >>> http://www.owasp.org/index.php/Malaysia >>> >>> OWASP Malaysia Wiki Facebook >>> http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420 >> >> >> >> -- >> Hasanuddin Abu Bakar >> GSEC #28858 >> IT Security Engineer >> +6017 913 1983 >> >> Sigma Rectrix Systems (M) Sdn Bhd >> No.15 & 15-1, Jalan Equine 9A, >> Equine Park, Bandar Putra Permai >> 43300 Seri Kembangan Selangor >> URL : www.sigmarectrix.com >> >> Phone : 03-89486696 >> Fax : 03-89487796 >> Helpdesk : 03-89486596 >> >> >> _______________________________________________ >> Owasp-Malaysia mailing list >> [email protected] >> https://lists.owasp.org/mailman/listinfo/owasp-malaysia >> >> OWASP Malaysia Wiki >> http://www.owasp.org/index.php/Malaysia >> >> OWASP Malaysia Wiki Facebook >> http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420 >> > _______________________________________________ > Owasp-Malaysia mailing list > [email protected] > https://lists.owasp.org/mailman/listinfo/owasp-malaysia > > OWASP Malaysia Wiki > http://www.owasp.org/index.php/Malaysia > > OWASP Malaysia Wiki Facebook > http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420
_______________________________________________ Owasp-Malaysia mailing list [email protected] https://lists.owasp.org/mailman/listinfo/owasp-malaysia
OWASP Malaysia Wiki http://www.owasp.org/index.php/Malaysia OWASP Malaysia Wiki Facebook http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420
