[nycbug-talk] Snort 2.x on FreeBSD
Zoran Perkov
zperkov
Sat Dec 18 14:30:17 EST 2004
no problem ask away....
im sure you have reasons behind using acid...but sguil is a better solution
in my opinion.it does requires a bit more work but Its a really
efficient real-time monitoring solution and avoids opening more holes
(aka web server) on your snort box.
-/z
On Sat, 18 Dec 2004 13:28:27 -0500, Kevin Reiter <tux at penguinnetwerx.net> wrote:
> : never have used acid so im not much help there.
> : all your rule needs can be found at www.bleedingsnort.com.
> : there are few docs there about how to set it up. As far as what
> : rules to use...this is wholey dependent on your needs.
>
> That's a big help - thanks!
> _______________________________________________
> % NYC*BUG talk mailing list
> http://lists.nycbug.org/mailman/listinfo/talk
> %Be sure to check out our Jobs and NYCBUG-announce lists
> %We meet the first Wednesday of the month
>
More information about the talk
mailing list