Date: Wed, 2 Mar 2011 22:51:05 +0200 From: =?ISO-8859-1?Q?Richard_Brend=F6rfer?= <neamtu@gmail.com> To: freebsd-pf@freebsd.org Subject: make pf to detect and drop virus/malware packets Message-ID: <AANLkTinZk0zAXzp%2B13LknpZeQbAUbrC2gKEHVuzGcSFm@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
Hi, this is the first time when I write on mailing list. If this subject was discussed in the past please don't shoot me, just trow me a bone. I was wonder if pf can detect packets that match a signature/fingerprint of a virus, like it makes with the OS fingerprints. Let's assume that I start to download eicar then pf 'see' the signature of the pachet(s) and drop the connection. Is this possible ? PS. excuse my English
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AANLkTinZk0zAXzp%2B13LknpZeQbAUbrC2gKEHVuzGcSFm>