John Johnson a écrit :
>
> /etc/snort/snort.conf
>
> You use the text editor of your choice. Also I would sugest that you check
> out www.snort.org and learn
> how to make and edit rule sets. After fine tuning Snort to remove as many
> false alarms as possable I would
> have it dump to database and use a set of php scripts called acid that will
> read the database and can do
> reports and all that kind of nice stuff..
>
> If you need any help let me know, I was the one that contributed Snort and
> I work with it a lot, it's used at
> work to monitor our Internet Servers and WAN.
>
> -John
>
> ----- Original Message -----
> From: <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sent: Friday, March 02, 2001 5:38 AM
> Subject: [Cooker-firewall] Snort
>
> > I understand that snort is included in the Cooker Firewall. Where do you
> > configure it at? I have gone through the web based configuration and can
> not
> > find it.
> >
> > Thanks,
> > Steve
> >
> >
> >
Prelude is another IDS developped by some good developpers in our team.
You can find more information on
http://www.linux-mandrake.com/prelude/
This software will be included in the next release, to improve
contribution.
--
Philippe Libat <[EMAIL PROTECTED]>
Linux-Mandrake http://www.linux-mandrake.com
_____________________________________________
Think Different, Think Linux
