Mailinglist Archive: opensuse-security (564 mails)

< Previous Next >
Re: [suse-security] Intrusion detection?
  • From: Sebastian Krahmer <krahmer@xxxxxxx>
  • Date: Sun, 7 Jan 2001 13:43:19 +0100 (CET)
  • Message-id: <Pine.LNX.4.21.0101071342130.30001-100000@xxxxxxxxxxxxxx>
On Sat, 6 Jan 2001, Kurt Seifried wrote:

hi,

> > Thomas,
> > Can you advice us a IDS that dont suck?
> > I just use Linux at home so I'll probably keep using many things that suck,
> > at least for try to learning how they suck, but others may need to know
> > other IDS apps, for corporate use.
> > http://website.lineone.net/~offthecuff/HIDS.htm
> > (http://www.networkintrusion.co.uk)
>
> www.snort.org
> www.whitehats.com
>
> snort sucks up packets, whitehats provides the IDS signatures.
>
> Kurt Seifried, seifried@xxxxxxxxxxxxxxxxxx
> Securityportal - your focal point for security on the 'net
IDS are just additional tools wich should be installed.
In doubt, I won't trust its messages, I'd just use it to
detect kiddies' portscans.

Sebastian



< Previous Next >
References