[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IDS

To: "Hung Hin Lik, Shell" <shellhung@linux.org.hk>
Subject: Re: IDS
From: Emre <emre.yildirim@akomail.us.army.mil>
Date: Sat, 2 Dec 2000 19:20:31 -0600
Cc: misc@openbsd.org
References: <3A27CF98.DB76C14A@linux.org.hk>

On Saturday 02 December 2000 19:16, Hung Hin Lik, Shell wrote:
> Hi all,
>
> 	Is there're any IDS tools running on OpenBSD / BSD* ?

You can use snort (www.snort.org) which is very easy to compile and 
configure.  I use snort on my gateway, it is very straight forward and easy 
to manage.  If you are going to use snort, you might also want to use it with 
SnortSnarf (http://www.silicondefense.com/snortsnarf/), which converts snort 
logs into a easy to read HTML format.

You can also try Network Flight Recorder (www.nfr.com), which is a more 
complex and commercial IDS (there is a free version avialiable I think)

cheers,

-- 
Emre Yildirim 
GPG KeyID 0xF772D9ED 
http://1086362465/emre-dsa.asc

References:
- IDS
  - From: "Hung Hin Lik, Shell" <shellhung@linux.org.hk>

Prev by Date: ppp && dialin server
Next by Date: Re: quick question about kde in the ports tree
Prev by thread: Re: IDS
Next by thread: Ipf patching on 2.7 - help!
Index(es):
- Date
- Thread