hi alim
On Mon, 28 May 2001 [EMAIL PROTECTED] wrote:
> anybody who can give me a rough estimate of an intrusion solution.
Most of the IDS is free....
- what are yu trying to protect against or detect ???
- do you really wanna read log files ???
- how and when do you wanna be notified that your server been "had" ?
- run passwd crackers
- run ssh and deny ftp/telnet/pop3/ppp connections
- run tripwire, aide, etc
- run logcheck, swatch, etc
- run netwatch, showtraf, iptraf, etc
- test your systems regularly and see if you catch yourself
===
=== make a backup of your systems daily/hourly...
=== test that you can retore your data on a NEW disk...
===
have fun
alvin
http://www.Linux-Sec.net
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
