> Thinking of using a Linux 9.0 box running Snort for detection in the > Untrusted Zone of our network (i.e., before the firewall). I would like to > know the absolute minimum configuration (package/software) and a suggested > hardening script that could be used for this. Checkout 'bastille linux'. Fantastic Linux hardening script by Jay Beale.
http://www.bastille-linux.org/ -- // Andrew MacKenzie | http://www.edespot.com // GPG public key: http://www.edespot.com/~amackenz/public.key // "I have great faith in fools; My friends call it self-confidence." // -- Edgar Allan Poe
pgp00000.pgp
Description: PGP signature