There are a number of security measures that can be implemented to protect a network. One of the key components that will assist in determining whether a system is being attacked is a network-based intrusion detection system (NIDS). A wonderful and free NIDS is snort. The GSEC course discusses how to set up snort on a Windows-based system. I will discuss how to set up snort 1.9.1 – the latest version – on a virtual Linux machine. First, the “before” scenario will describe the situation before this security improvement is enacted. Second, I will assess the risk, discuss why someone should consider network intrusion detection, talk about snort, VMware, and Linux, and investigate configuration options. I’ll conclude with some implementation notes, enhancements and the “after” scenario. The appendices provide brief installation instructions and resources for further information.
Read Entire Paper
E-Mail Link
Your IP address will be sent with this e-mail
