Having trouble finding malicious activity during Snort scans? Your Snort implementation may need a tune up. Joel Esler tells you how to do it using host attribute ...

i'm setting up a dedicated snort box. i followed Patrick Harper's excellent documentation.<BR><BR>however, he doesn't go into how to set a dedicated IDS, with multiple interfaces.<BR><BR>while i haven ...

To get started, download both the EXE installer and the rules file (make sure to get the rules file corresponding to your Snort version) from http://www.snort.org ...

I let my intern upgrade the rules to the snort box and now it's hosed when I start it I get this<BR><BR><pre class="ip-ubbcode-code-pre"> ERROR: /etc/snort/snort.conf ...

Designed to fill the gap left by expensive, heavy-duty network intrusion detection systems, Snort is a free, cross-platform packet sniffer, logger, and intrusion detector for monitoring smaller TCP/IP ...