[Oisf-users] Emerging threats file blocked by our firewall

Andreas Moe moe.andreas at gmail.com
Sat Mar 21 06:35:23 UTC 2015


Can you check to see what packet and or what the sonicwall is looking to
trigger at?

Initial thought is that this is a false positive. Need more information to
go on than "my system said this".

/Andreas Moe
21. mars 2015 03:55 skrev "James Moe" <jimoe at sohnen-moe.com>:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hello,
> opensuse v13.2
> linux v3.16.7-7-desktop x86_64
> suricata 2.0.7
>
>   I started "make install-full". It proceeded until it started
> downloading files from the OISF site:
>
> Gateway Anti-Virus Alert
> This request is blocked by the SonicWALL Gateway Anti-Virus Service.
> Name: ScrInject.UR (Trojan)
>
>   Hmm. Well, I could disable the virus check. But seems wiser to check
> here first for some opinions about what may be happening.
>
> - --
> James Moe
> moe dot james at sohnen-moe dot com
> 520.743.3936
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v2
>
> iEYEARECAAYFAlUM3ZkACgkQzTcr8Prq0ZMFmQCghFTcBr7W+We5mjINK0lcI5Ld
> 904AoKCuqHqpDsDPsGjsqDagtxcj9vw4
> =Ebd0
> -----END PGP SIGNATURE-----
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
> Training now available: http://suricata-ids.org/training/
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20150321/7832e2e4/attachment-0002.html>


More information about the Oisf-users mailing list