snort or tripwire, which is best?

On Wed, 07 Sep 2005 23:39:07 +0000, Pierre Asselin wrote:

> Proteus <proteus@uselessemail.net> wrote:
>
>> I am not exactly sure what
>> a NAT router is-- is that something I should buy to replace my Linksys
>> router, and if so any recommended brand/models?
>
> NAT == Network Address Translation. Ten to one that your Linksys router
> is a NAT router. If it lets several computers share a single cable
> or modem without paying for multiple IP addresses, it's a NAT router.

Yup I guess it is. Does just that.

Stachu 'Dozzie' K. wrote:

>>>
>>> Neither. You don't need them.
>>>
>>
>> Is that supposed to be in jest?
>>
>
> And how would you like to make sure you don't have rootkits when you get
> one? Removing manually? Or maybe restore from backup?
>

You'll need to help me here Stachu - How exactly do you recover a
compromised system without an IDS?

C.

On 08.09.2005, Colin McKinnon <colin.thisisnotmysurname@ntlworld.deletemeunlessU RaBot.com> wrote:
> Stachu 'Dozzie' K. wrote:
>
>>>>
>>>> Neither. You don't need them.
>>>>
>>>
>>> Is that supposed to be in jest?
>>>
>>
>> And how would you like to make sure you don't have rootkits when you get
>> one? Removing manually? Or maybe restore from backup?
>>
>
> You'll need to help me here Stachu - How exactly do you recover a
> compromised system without an IDS?

Nice try, cutting off almost all my comments. Don't they call this
a "manipulation"?

Do *you* deploy IDS on *desktops*? Enlight me here: what are the
advantages of installing an IDS on a desktop instead of defending that
desktop earlier?

--
Feel free to correct my English
Stanislaw Klekot