Re: Setting up an IDS system

--- Na --- Naman Latif <[EMAIL PROTECTED]> wrote: > > Hi, > I am in the process of setting up and IDS system using > Linux\Snort in > DMZ. A couple of questions regarding this > > 1. Is it a safe practice to have access to this system > from Inside > Network (for retrieving log files etc) from 1

Re: Setting up an IDS system

Latif" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, January 31, 2003 7:34 PM Subject: Setting up an IDS system > > Hi, > I am in the process of setting up and IDS system using Linux\Snort in > DMZ. A couple of questions regarding this > > 1. Is it a safe

Re: Setting up an IDS system

1) Depending on how you set it up, I would say yes, also limit the users that can log in remotely. also concider using a remote log tool, such as remote syslogd, to avoid that need 2) none and yes. Ideally, you don't want the IDS station to be seen at all from the outside, concider using a one-

RE: Setting up an IDS system

3 4:24 AM > To: Naman Latif > Cc: [EMAIL PROTECTED] > Subject: RE: Setting up an IDS system > > > To answer you questions my humble opinion is > > 1)Yes should be safe if it is one way traffic as in you can access > to machine with ftp for instance but it has no ac

Re: Setting up an IDS system

Hi Naman, reply in line "Naman Latif" wrote 1. Is it a safe practice to have access to this system from Inside Network (for retrieving log files etc) from 1-2 Stations ? Of course IDS won't have access to inside network and be blocked by Firewall. Have the ids box dual homed, 1 NIC for the DMZ

Antwort: Setting up an IDS system

Latif" named.com> Kopie: Thema: Setting up

RE: Setting up an IDS system

age- From: Naman Latif [mailto:[EMAIL PROTECTED]] Sent: 31 January 2003 17:34 To: [EMAIL PROTECTED] Subject: Setting up an IDS system Hi, I am in the process of setting up and IDS system using Linux\Snort in DMZ. A couple of questions regarding this 1. Is it a safe practice to have access

Re: Setting up an IDS system

Naman Latif wrote: Hi, I am in the process of setting up and IDS system using Linux\Snort in DMZ. A couple of questions regarding this 1. Is it a safe practice to have access to this system from Inside Network (for retrieving log files etc) from 1-2 Stations ? Ofcourse IDS won't have access to in

Re: Setting up an IDS system

Naman Latif wrote: Hi, I am in the process of setting up and IDS system using Linux\Snort in DMZ. A couple of questions regarding this 1. Is it a safe practice to have access to this system from Inside Network (for retrieving log files etc) from 1-2 Stations ? Ofcourse IDS won't have access to

RE: Setting up an IDS system

Comments in-line, denoted with ** 1. Is it a safe practice to have access to this system from Inside Network (for retrieving log files etc) from 1-2 Stations ? Ofcourse IDS won't have access to inside network and be blocked by Firewall. ** Yes. That's safe. Enforce it with firewall rules *on*