I would like to start using snort IDS. I have a linux box all built and hardened (per much of the this list's guidance!) but now would like to know how to *truly* secure my second network card that will have snort listening on. What are a few things I should bear in mind when "locking down" this card? What makes the card "stealth?"
I look forward to your responses. Thanks again. -R
