hi ya
> snort should do the trick. be careful when you are planning on collecting
> data for legal purposes. your data integrity will be tested in court. if
> people can compromise your networks, what makes you sure your IDS can not
> be compromised and the logs altered ?
*everything* will be challenged .... not just the logs..
get the fbi and local police agencies and the ISP involved asap and send
them copies and/or let them put a server on the lan tocollect their own
data
have fun
alvin
http://www.Linux-Sec.net/IDS -- lots of ids --
> --truman
>
> On Thu, 5 Jul 2001, Tom Beer wrote:
>
> > Hi,
> >
> > I'm searching for an IDS which should
> > have the following features:
> >
> > collect data that can be used in court against attackers
> > linux platform (standalone)
> > not to hard to install
> >
> > Any pointers?
> >
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
