[Bro] DPD or binpac on kernel-level
Dongsu Park
dpark1978 at gmail.com
Tue Dec 18 11:50:18 PST 2007
Hi,
is there any implementation of DPD or binpac on kernel-level,
for instance on Linux netfilter?
If not, do you have any plan for it?
I think DPD and binpac are excellent implementations, but they currently
depend on Bro IDS. They would be more useful if they could be combined
into kernel-level firewalls, with enabling detected packets to be dropped
immediately.
As far as I know, L7-filter <http://l7-filter.sourceforge.net> does
similar jobs. It seems to be interesting if DPD/binpac can be ported to
kernel modules on L7-filter, or something like that.
--
Dongsu Park <dpark1978 at gmail.com>
More information about the Bro
mailing list