[Oisf-users] Emerging threats file blocked by our firewall
Michal Purzynski
michal at rsbac.org
Sat Mar 21 11:24:51 UTC 2015
Your gateway looks for a certain patterns of bits that happens to be
somewhere in the .tar.gz with rules. Let your vendor know about this
false positive, better yet, disable the "anti-virus" and get Suricata
installed ;-)
On 21/03/15 03:55, James Moe wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hello,
> opensuse v13.2
> linux v3.16.7-7-desktop x86_64
> suricata 2.0.7
>
> I started "make install-full". It proceeded until it started
> downloading files from the OISF site:
>
> Gateway Anti-Virus Alert
> This request is blocked by the SonicWALL Gateway Anti-Virus Service.
> Name: ScrInject.UR (Trojan)
>
> Hmm. Well, I could disable the virus check. But seems wiser to check
> here first for some opinions about what may be happening.
>
> - --
> James Moe
> moe dot james at sohnen-moe dot com
> 520.743.3936
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v2
>
> iEYEARECAAYFAlUM3ZkACgkQzTcr8Prq0ZMFmQCghFTcBr7W+We5mjINK0lcI5Ld
> 904AoKCuqHqpDsDPsGjsqDagtxcj9vw4
> =Ebd0
> -----END PGP SIGNATURE-----
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
> Training now available: http://suricata-ids.org/training/
More information about the Oisf-users
mailing list