Hi, Anybody have any thoughts on Snort vs Suricata?
Also, how important is it to use an IDS if you run a server that hosts a popular website? I'm reading here (http://www.aldeid.com/wiki/Suricata-vs-snort): Suricata offers new features that Snort could implement in the future: multi-threading support, capture accelerators [...snip...] One advantage Suricata has is its ability to understand level 7 of the OSI model, which enhances its ability of detecting malwares. Suricata has demonstrated that it is far more efficient than Snort for detecting malwares, viruses and shellcodes. O.D.