- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - OpenVMS
- >
- Re: Blocking intrusion detection.
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-15-2004 09:05 PM
02-15-2004 09:05 PM
Oct 3 John Gillings posted an answer with a little script.
I only entered the forum end december, and when I read this stream it immediately suggested the solution for a problem we have had since our desktop environment started using Citrix.
It is really quite simple, you just need to be smart enough to think it up (which we were not) or have it pointed out.
The real winner is the partial wildcard in "DELETE/INTRUSION some_substring_* ".
Because I think both Anwar (for formulating the question) and John (for the blinding pointer) well deserve points, I ask them to reply to this, just so I may award them.
Jan
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-18-2004 08:42 AM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-18-2004 06:16 PM
02-18-2004 06:16 PM
Re: Re: Blocking intrusion detection.
of course! (we also have a policy that users who err too often often are singled out, and receive some extra instruction, so we need the info anyway)
jpe
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-26-2004 07:23 PM
02-26-2004 07:23 PM
Re: Re: Blocking intrusion detection.
To be precise its supposed to be
DELETE/INTRU
rgds
Mobeen
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-07-2004 07:25 PM
03-07-2004 07:25 PM
Re: Re: Blocking intrusion detection.
sorry, but that _MAY_ be the case if the user logs in from a terminal, but in our case _several_ users ( up to 60 in peak hours) use _the_same_ source (a Citrix server) to login from.
The DELETE/INTRUSION should specify EXACTLY (including case sensitivity) what the SOURCE field in SHOW INTRUSION gives.
And my real winner in this was the wildcard possibility!
Thanks for reacting anyway!
Jan
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-07-2004 07:35 PM
03-07-2004 07:35 PM
Re: Re: Blocking intrusion detection.
if you like to see some other examples for the source you can see them with:
$ help delete/intrusion_record examples
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-07-2004 07:48 PM
03-07-2004 07:48 PM
Re: Re: Blocking intrusion detection.
Agreed :))
rgds
Mobeen