|
|
|
Date Submitted:
08/18/05
Hits: 33 Rating:  based on 0 votes
Securing a Windows Snort Sensor for Hostile EnvironmentsAdded by Papergrl
Description:
Snort is an open-source Network Intrusion Detection System (NIDS). Originally written for UNIX, it has since been ported to the Windows platform. While Snort undoubtedly runs faster and with less packet loss on a UNIX host, many organizations lack the requisite skill sets to deploy and maintain a UNIX host within their environment. For these organizations, Snort on Windows 2000 provides a low-cost, high-quality NIDS. Deploying Snort on Windows can be a convoluted process. Michael Steele of Silicon Defense has simplified the installation with his excellent paper, -Snort Installation Manual - Snort, MySQL, Acid & IIS - Windows NT4 Server, 2000, & XP (All Versions)1. His paper lays out a step-by-step procedure for the complicated build process. But it does not address the security of the Snort sensor. Indeed, a sensor built solely to his specifications will not survive on any but the most trusted of network segments.
Read the Complete Paper You don't have permission to post replies. Please login or register. |