P Gentry wrote:
> "Denver Prophit" <denverp@cox.nospam.net> wrote in message news:<hEsTc.8389$xs.7930@okepread02>...
>
>>I have found MANY docs via google on how to setup ACID for snort. What I
>>need know is a HOWTO to use it effetively. Please provide books, URL's if
>>you know of any.
>
>
> Google:
> linux snort howto
> Results 1 - 50 of about 25,400 for linux snort howto. (0.35 seconds)
> and:
> http://www.snort.org/docs/
>
> IDS -- be it snort or any other -- depends on what you want to do with
> it, what will meet your needs, and how much time you're willing to put
> into it.
>
> IDS is roughly (IMO) 50% software/setup and 50% art ;-)
You can configure it only with the documentation it ships, I did it that
way without any problem. It's quite easy to start working with it. You
basically introduce the SQL orders in MySQL or whatever and then you
edit the config file. Nothing else.
Hope it helps.
--
Jose Maria Lopez Hernandez
Director Tecnico de bgSEC
jkerouac@bgsec.com
bgSEC Seguridad y Consultoria de Sistemas Informaticos
http://www.bgsec.com
ESPAŅA
The only people for me are the mad ones -- the ones who are mad to live,
mad to talk, mad to be saved, desirous of everything at the same time,
the ones who never yawn or say a commonplace thing, but burn, burn, burn
like fabulous yellow Roman candles.
-- Jack Kerouac, "On the Road"