Network Security: Detailed info on RE: [Snort-users] Snort IPS Functionality

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Snort-Users

[Top] [All Lists]

RE: [Snort-users] Snort IPS Functionality

from [Briggs, Bruce] Network Security

[Permanent Link]

Subject:	RE: [Snort-users] Snort IPS Functionality
Date:	Wed, 30 Mar 2005 09:05:35 -0500

See this:
http://snort-inline.sourceforge.net/
 
Bruce

  _____  

From: snort-users-admin@lists.sourceforge.net
[mailto:snort-users-admin@lists.sourceforge.net] On Behalf Of Dave Raven
Sent: Wednesday, March 30, 2005 7:24 AM
To: snort-users@lists.sourceforge.net
Subject: [Snort-users] Snort IPS Functionality



Hello all,

            I'm interested in using snort on a FreeBSD machine as an
IPS. I've read the docs on the website and as far as I can see the only
available "IPS" functionality exists on Linux, using iptables. Does this
actually just drop the questionable packet - or is it generating
firewall rules? And does any of the IPS functionality work on FreeBSD at
all? There was a project a while ago called Hogwash, which would do
exactly what I'm interested in - but that seems long dead...

 

Thanks in advance

Dave

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Snort-users] Snort IPS Functionality, Dave Raven Re: [Snort-users] Snort IPS Functionality, Will Metcalf RE: [Snort-users] Snort IPS Functionality, Briggs, Bruce RE: [Snort-users] Snort IPS Functionality, Briggs, Bruce <= Re: [Snort-users] Snort IPS Functionality, Will Metcalf

Previous by Date:	RE: [Snort-users] RE: [Snort-sigs] Any new rules coming out of snort.org?, Briggs, Bruce
Next by Date:	Re: [Snort-users] RE: [Snort-sigs] Any new rules coming out of snort.org?, Frank Knobbe
Previous by Thread:	RE: [Snort-users] Snort IPS Functionality, Briggs, Bruce
Next by Thread:	Re: [Snort-users] Snort IPS Functionality, Will Metcalf
Indexes:	[Date] [Thread] [Top] [All Lists]