[Emerging-Sigs] SSH negation on 2018378

James Lay jlay at slave-tothe-box.net
Mon Apr 13 06:35:46 HDT 2020


Any chance we can get a negation on this?  I've seen this a few times:

04/10-22:17:46.964152  [**] [1:2018378:5] ET EXPLOIT Possible OpenSSL
HeartBleed Large HeartBeat Response (Server Init Vuln Client) [**]
[Classification: Potentially Bad Traffic] [Priority: 2] {TCP}
x.x.x.x:61812 -> x.x.x.x:22

Thank you!


James
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-sigs/attachments/20200413/d3d340cf/attachment.html>


More information about the Emerging-sigs mailing list