Results 1 to 6 of 6

Thread: Linux IDS

  1. #1
    Senior Member
    Join Date
    Nov 2002
    Posts
    382

    Linux IDS

    Hey guys I found on the net a tool I didn't know about:
    LIDS (Linux IDS): basicaly an File System IDS & integrity checker. http://www.lids.org/

    Sound like a good tool does anyone have feedback about it?
    [shadow] SHARING KNOWLEDGE[/shadow]

  2. #2
    Senior Member
    Join Date
    May 2003
    Posts
    207
    Nice tool! I've used Snort (www.snort.org) for the longest time, and I think it's pretty much your best all around IDS system... HOWEVER, from what I've seen on their webpage, LIDS offers a whole lot!

    I think one of the coolest features is actually the local security features, as opposed to the network security features that IDS systems usually limit themselves to. I'm going to install LIDS on my box and see what it can do.

  3. #3
    Senior Member
    Join Date
    May 2003
    Posts
    207
    Installed... and been messing with it for a bit... I do like it, but I'd still take Snort over it :-/

  4. #4
    rebmeM roineS enilnOitnA steve.milner's Avatar
    Join Date
    Jul 2003
    Posts
    1,021
    I'm a big fan of portsentry my self
    IT, e-commerce, Retail, Programme & Project Management, EPoS, Supply Chain and Logistic Services. Yorkshire. http://www.bigi.uk.com

  5. #5
    yeap! is a good tool.
    maybe u wanna test Advanced Intrusion Detection Enviroment: http://www.cs.tut.fi/~rammer/aide.html
    Is a nice tool too.
    See u!

  6. #6
    Just Another Geek
    Join Date
    Jul 2002
    Location
    Rotterdam, Netherlands
    Posts
    3,401
    There are basicly 2 types of IDSs. Host based and network based. LIDS is a host based IDS and Snort is a network based IDS. Therefor these 2 cannot be compared to each other as they both have a different 'field of view'.
    Oliver's Law:
    Experience is something you don't get until just after you need it.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •