RE: [Snort-users] *very* many snort installations..
This is a discussion on RE: [Snort-users] *very* many snort installations.. within the Snort forums, part of the System Security and Security Related category; On Thu, 2003-11-27 at 04:46, Michael Steele wrote: > The solution is not to install Snort on ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
11-27-2003
|
|||
|
|||
RE: [Snort-users] *very* many snort installations..
On Thu, 2003-11-27 at 04:46, Michael Steele wrote:
> The solution is not to install Snort on every workstation. Strange - companies like Symantec would disagree with you. They certainly think there's a future in host-based IDS. Of course, the IDS is easy - it's the centralised management that's hard... How you handle 10,000 hosts all sending 100 alerts/sec to your central console when SLAMMER-IV hits one machine is beyond me ;-) [to be fair, I'm confusing centralised management with centralised logging here] Cheers Jason Haar Information Security Manager, Trimble Navigation Ltd. Phone: +64 3 9635 377 Fax: +64 3 9635 417 PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1 ------------------------------------------------------- This SF.net email is sponsored by: SF.net Giveback Program. Does SourceForge.net help you be more productive? Does it help you create better code? SHARE THE LOVE, and help us help YOU! Click Here: http://sourceforge.net/donate/ _______________________________________________ Snort-users mailing list Snort-users@lists.sourceforge.net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/...fo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.p...st=snort-users 
|
Linear Mode
