Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Snort-Signatures
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Snort-sigs] SNORT help

from [Frank Knobbe] Network Security [Permanent Link]
Subject: Re: [Snort-sigs] SNORT help
Date: Thu, 09 Mar 2006 19:33:48 -0600 
On Thu, 2006-03-09 at 20:15 -0500, FRANK SORNATALE wrote:

Is there anyone out there that understands snort real well that can help 
walk me through each problem.  I know they are really basic for you guys, 
but I never delt with snort and the manual isn't helping me much.  Maybe 
through AIM i could get some help.


If you never used Snort and don't know the rule language and how to
configure Snort, and you have been given the task to configure it in
some network (maybe your own, maybe a client), then I suggest you
contract with a consultant that has used Snort before.

Not just is the "get free consulting via mail list or IRC" frowned upon,
it probably will do more harm than good. Snort needs to be properly
configured and tuned to your network, and that is hard to do remotely.
You really want to have someone spend some time with you to understand
not just your needs, but also your network, and then have Snort custom
configured to your network.

Snort is not a one-size-fits-all product. It takes time to get it set up
properly for your network. You really want the help of a consultant that
can sit down with you and work on that.

Regards,
Frank


-- 
It is said that the Internet is a public utility. As such, it is best
compared to a sewer. A big, fat pipe with a bunch of crap sloshing
against your ports.

Attachment: signature.asc
Description: This is a digitally signed message part

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Snort-sigs] SNORT help, FRANK SORNATALE
Next by Date:  Re: [Snort-sigs] SNORT help, Joel Esler
Previous by Thread:  [Snort-sigs] SNORT help, FRANK SORNATALE
Next by Thread:  Re: [Snort-sigs] SNORT help, Joel Esler
Indexes:  [Date] [Thread] [Top] [All Lists]