13 Jun
2007
13 Jun
'07
22:46
Can anyone out there tell me what is a Prosiak Back-door connection in Linux. This is a copy of the first IDS connection which I think is only applicable to Unix/Linux Thanks Scott -------- Original Message -------- Subject: Alert from EventLog Analyzer : IDS03 | 192.168.1.1 | EFW Date: Wed, 13 Jun 2007 12:45:49 +1000 From: secure@aphofis.com To: secure@aphofis.com Host : 192.168.1.1 Application : EFW Time Generated : Wed Jun 13 12:45:28 2007 Criticality : High Number of Occurances : 1 Message : EFW: IDS: prio=3 rule=Http_in action=closing_connection reason=intrusion_detected description="Prosiak client connection attempt" signature="2361:Backdoor Prosiak" idrule="Http_in" srcip=220.229.166.247