-
June 21st, 2002, 01:11 AM
#1
Senior Member
Good, Free IDS anyone?
Im sorry if this has been posted before. I tried to find a thread for this but came up empty handed. I am setting up a home network from which I plan to run a linux server eventually on a cable modem. I am working on this from the ground up. I am testing different software and different os's to learn their weaknesses and how to protect them. I read that what one really needs, not just a firewall or a virus scanner, is good intrusion detection software. I am wondering if anyone knows of a good one that is free, or any that are for that matter, so that I use them in my testing and learning. I appreciate your help. If there are no free ids's then what are some good ones to purchase? Thanks.
M$ support is like shooting yourself in the left foot and then putting a band-aid on the right one.
-
June 21st, 2002, 01:24 AM
#2
Snort (NIDS)
www.snort.org
Ammo
Credit travels up, blame travels down -- The Boss
-
June 21st, 2002, 01:42 AM
#3
Hello. You can go to www.webattack.com they have over 2000 freeware shareware and adons. There is lots of up to date firewalls and virus snanners also and a lots of net work stuff. Have fun and good luck.
wortcraft
-
June 21st, 2002, 01:44 AM
#4
/me agrees with ammo!
Snort is the way to go.
-
June 21st, 2002, 01:46 AM
#5
For free, I'd run SNORT on OpenBSD (not on Linux).
If you are ready for a commercial application, NFR rocks (and is cheaper and much more flexible/reliable than ISS).
\"Windows has detected that a gnat has farted in the general vicinity. You must reboot for changes to take affect. Reboot now?\"
-
June 21st, 2002, 02:25 AM
#6
Senior Member
thanks for all your suggestions....I will check them out.
M$ support is like shooting yourself in the left foot and then putting a band-aid on the right one.
-
June 25th, 2002, 07:33 PM
#7
snort will work fine on any *nix. It is definately the IDS to use.
You might find it a bit easier to install and configure on freebsd as I believe most of the development for it is done on freebsd.
-
July 13th, 2002, 10:24 PM
#8
Junior Member
Yes Snort is it. You should also get DeMarc which is a cool graphical interface with SNORT. This is the free Linux version of DeMarc: http://linux.tucows.com/internet/preview/229406.html. They just came out with a windows version and are charging like $20000 for it!
-
July 16th, 2002, 07:02 AM
#9
Junior Member
Originally posted here by TaoJones
Yes Snort is it. You should also get DeMarc which is a cool graphical interface with SNORT. This is the free Linux version of DeMarc: http://linux.tucows.com/internet/preview/229406.html. They just came out with a windows version and are charging like $20000 for it!
not quite right, the professional edition costs loads yes, but the personal edition for windows is as free as the personal edition for *nix.
btw, puresecure is not only a nice graph interface for snort, it features logging to mysql, and displaying logs via a php website, plus having one central for multiple snort sensors, so it is using snort yes, yet add's some nice features on top of that ;)
the homepage for puresecure is http://www.demarc.com
after signing up for a free account, you can download the personal edition from this site
\"Wisdom lies not in obtaining knowledge, but in using it in the right way\"
- kroesjnov
http://www.dsinet.org/alt.security.nl
http://www.securitydatabase.net
email: kroesjnov@clownz.internet (remove inter to reply)
UIN: 150938962
MSN: kroesjnov_sec@hotmail.com
pgp ID: 0xDF154D85
-
July 17th, 2002, 08:23 PM
#10
Junior Member
Why OpenBSD and why not Linux?
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|