Re: how...

From: left_coast <void@xxxxxxxx>
Date: Mon, 11 Dec 2006 16:32:30 -0800

ajtiM wrote:

Hi!

I have a standalone machine with the cable Internet connection. I am
running shorewall and I read a little about Snort. It is too paranoid to
install snort on the standalone computer?

Thanks in advance...

By my understanding of "standalone computer" is that it would not be
connected to the Internet (or any other network), so yes, I would say it is
paranoid.

On thing about intrusion detection software is that skilled intruders know
about them and can remove the evidence of the intrusion from the logs, etc.
specially on computers that are not connected to a log host.
.

References:
- how...
  - From: ajtiM

Prev by Date: snort
Next by Date: Re: snort
Previous by thread: how...
Next by thread: snort
Index(es):
- Date
- Thread

Relevant Pages

slowing down the spread of worms
... Is anyone else using the "flexible response" feature of snort to slow ... I'm currently running snort against a mirror of all the traffic for two ... HTTP request sent, awaiting response... ... Read error (Connection reset by peer) in headers. ...
(Incidents)
Re: OT - allowing data sharing through broadband router
... Use an encrypted conection and place the base station where it as far from ... Configure the base station to only allow connection to known MAC addresses ... one for bussiness never connected to the internet ... You're not paranoid. ...
(uk.business.agriculture)
Re: FW: badnwidth monitor
... Well snort will indeed dump more than enough information, ... > person which is hogging the bandwidth.You can ... > Else you can put a bandwidth managing rule on the router. ... >>type, but frankly, my DSL connection at home is more ...
(Security-Basics)
Re: Help! RiscPC &WiFi Security
... connection and just wants to make that conection secure. ... windows wireless dongles and bridges when a wall or two gets in the way. ... If paranoid means I don't want anyone in my neighbourhood or who ... If you think you don't need any encryption whatsoever then go ahead ...
(comp.sys.acorn.networking)
Re: Has my sons computer been hacked?
... you don't seem to understand the remotest thing about ip adresses. ... >>I wouldn't pretend to be an expert, ... I don't usually leave my network connection on when I'm not actively using ... Who wouldn't be paranoid if someone first claimed to have accessed you ...
(uk.media.tv.misc)