Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INTRUSION DETECTION PREVENTION DEVICES GUIDE REV 01 Manual page 123

Table 51: IDP Device Configuration: Protocol Thresholds and Configuration Settings (continued)
Setting Description
POP3 Maximum Line length–Raises a protocol anomaly if IDP detects a POP3 line containing more bytes than the
specified maximum. The default is 512 bytes.
Maximum Username length–Raises a protocol anomaly if IDP detects a POP3 username containing more
bytes than the specified maximum. The default is 64 bytes.
Maximum Password length–Raises a protocol anomaly if IDP detects a POP3 password containing more
bytes than the specified maximum. The default is 64 bytes.
Maximum APOP length –Raises a protocol anomaly if IDP detects an APOP containing more bytes than the
specified maximum. The default is 100 bytes.
Maximum message number–Raises a protocol anomaly if IDP detects a POP3 message number that is higher
than the specified maximum. The default is 10,00,000.
Maximum number of login failures per-minute–Raises a BRUTE_FORCE protocol anomaly if IDP detects
more login failures than the specified maximum. The default is 4 POP3 login failures per minute.
RADIUS Maximum number of authenticated failures per-minute–Raises a BRUTE_FORCE protocol anomaly if IDP
detects more login failures than the specified maximum. The default is 4 RADIUS login failures per minute.
SIP Max-Forwards threshold–Raises a protocol anomaly if IDP detects maximum number of thresholds.
SMB Maximum registry key length–Raises a protocol anomaly if IDP detects an SMB registry key containing more
bytes than the specified maximum. The default is 8192 bytes.
Maximum number of login failures per-minute–Raises a BRUTE_FORCE protocol anomaly if IDP detects
more login failures than the specified maximum. The default is 4 SMB login failures per minute.
Copyright © 2010, Juniper Networks, Inc.
Chapter 8: Configuring Intrusion Detection and Prevention Device Settings
107