Check out this great article.
http://www.hsc.fr/ressources/article.../index.html.en
It is very nicely written and quite explanatory, for both developers and system administrators.
Printable View
Check out this great article.
http://www.hsc.fr/ressources/article.../index.html.en
It is very nicely written and quite explanatory, for both developers and system administrators.
Found a lot of that useful for understanding some of the traffic and alerts seen on some Cisco HIDS sensors. Its always an ongoing effort deciphering legit traffic from non-legit. Some of those well written articles shed some light on some of the queries I had.