Our ISP - the German academic ISP DFN - provides us with information about trojans contacting their masters in the internet.
Which is nice, but in my logs I cannot find what EXACTLY they deem inappropriate traffic. They're mentioning the TCP source port, though. So how can I make Squid log the SOURCE PORT of outgoing requests TO the internet? -- Ralf Hildebrandt Geschäftsbereich IT | Abteilung Netzwerk Charité - Universitätsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 [email protected] | http://www.charite.de
