make pf to detect and drop virus/malware packets
Richard Brendörfer
neamtu at gmail.com
Wed Mar 2 21:14:54 UTC 2011
Hi,
this is the first time when I write on mailing list.
If this subject was discussed in the past please don't shoot me, just trow
me a bone.
I was wonder if pf can detect packets that match a signature/fingerprint of
a virus, like it makes with the OS fingerprints.
Let's assume that I start to download eicar then pf 'see' the signature of
the pachet(s) and drop the connection.
Is this possible ?
PS. excuse my English
More information about the freebsd-pf
mailing list