Search:

Type: Posts; User: berzerked; Keyword(s):

Search: Search took 0.02 seconds.

  1. July 15th, 2008, 12:43 PM

    Thread: IDS Event Logging Question

    by berzerked
    Replies
    3
    Views
    34,053

    They're Cisco IPS 4260s*

    ****
  2. July 14th, 2008, 09:53 PM

    Thread: IDS Event Logging Question

    by berzerked
    Replies
    3
    Views
    34,053

    IDS Event Logging Question

    Hi Guys,

    Quick question about IDS event logging. If I see an "Attacker Address" of 0.0.0.0, is it safe to assume that the source was spoofed?

    Also, if I see an "Attacker Address" of 1.2.3.4,...
  3. December 5th, 2006, 09:52 PM

    Thread: Host Based IDS

    by berzerked
    Replies
    0
    Views
    4,942

    Host Based IDS

    I'm doing some research on commercial HIDS that will run on Solaris 10 x86 boxes, and so far, I've not had much luck. Have you guys come across any? My guess is that there will be very few. As of...
  4. May 26th, 2006, 01:51 PM

    Thread: Audit Trail Tools

    by berzerked
    Replies
    1
    Views
    4,852

    Audit Trail Tools

    ***Scenario***

    I've been tasked to evaluate audit trail (Microsoft/Solaris/RedHat servers) monitoring tools that will allow sys admins to review events in real-to-near-real time. The servers...
  5. March 6th, 2006, 09:51 PM

    Thread: Good SNMP Tools?

    by berzerked
    Replies
    10
    Views
    9,406

    Here you go..........

    Take a look at net-snmp........


    http://net-snmp.sourceforge.net/
Results 1 to 5 of 5