Answered step by step
Verified Expert Solution
Question
1 Approved Answer
1 . Alert on any traffic with the RST flag set to the server from . 1 2 8 . Your message should indicate:
Alert on any traffic with the RST flag set to the server from Your message should indicate: Possible SYN Scan." Alert on any FTP traffic with the SYN flag set from to the victim. Message should read: attempt to FTP to victim." Alert on any telnet traffic with the SYN flag set, from to the victim. Message should read: attempt to telnet to victim." Alert on any ssh traffic containing the keyword SSH from to the server. Message should read: attempt to SSH to server." Alert on any http traffic from with the SYN flag set, from to the server. Message should read: attempt to the web server." Alert on any http traffic from containing "apacheconf" sent from to the server. Message should read "Found apacheconf." Alert on any packets from to the victim containing "passwd". Message should read: "Found passwd." Alert on any packets from to the victim containing "shadow". Message should say "Found shadow" Alert on any ftp traffic from the to the victim that contains "jgarrett" Message should read "jgarrett over ftp Alert on any ssh traffic from to the server with the FIN and ACK flags set. Message should read FA for SSH teardown."
Step by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access to Expert-Tailored Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started