July 15th, 2008, 01:43 PM
July 14th, 2008, 10:53 PM
Quick question about IDS event logging. If I see an "Attacker Address" of 0.0.0.0, is it safe to assume that the source was spoofed?
Also, if I see an "Attacker Address" of 220.127.116.11,...
December 5th, 2006, 09:52 PM
I'm doing some research on commercial HIDS that will run on Solaris 10 x86 boxes, and so far, I've not had much luck. Have you guys come across any? My guess is that there will be very few. As of...
March 6th, 2006, 09:51 PM
Take a look at net-snmp........