Signature Detail
Short Name |
P2P:KAZAA:FILE-HASH |
|---|---|
Severity |
Info |
Recommended |
No |
Category |
P2P |
Keywords |
Kazaa File Hash Request |
Release Date |
2003/09/11 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
P2P: Kazaa File Hash Request
This signature detects Kazaa file requests using HTTP on non-standard ports. Current Kazaa versions attempt to evade firewalls by carrying HTTP-like traffic that uses embedded URI information and filename-hiding techniques. To use this signature, Attack Object, to block Kazaa traffic, set your rule action to "drop connection". NOTE: Because this signature is system-intensive and can severely affect network performance, use with caution.
Extended Description
None
References