Snort 2.0 Intrusion Detection

摘要: From the Publisher: The incredible low maintenance costs of Snort combined with its powerful security features make it one fastest growing IDSs within corporate IT departments. Complete a free CD containing 2.0 plus popular plug-Ins including ACID, Barnyard, and Swatch, Intrusion Detection is first book dealing IDS written by member Snort.org. Readers will receive valuable insight to code base in-depth tutorials complex installation, configuration, troubleshooting scenarios. Explore Snort's Features Master three core that so powerful: packet sniffing, logging, intrusion detection. Install Snort Find instructions on installing for both Linux Microsoft Windows. Understand Rule Action Options Determine which five options best you: pass, log, alert, dynamic, or activate. Master stream4 frag2 Preprocessors Enhance original rule-based pattern-matching model frag2. Configure Unified Logs Use unified logs significantly increase efficiency sensor up your engine. Manage Output Plug-Ins Install, configure, use SnortSnarf, IDSCenter, other plug-ins monitor log files. Watch Updates Use oinkmaster, semi-automated tool, download compare new rulesets old ones. Decide Which Rules Enable Identify key protocols services are used network determine level granularity required evidentiary logs. Install Configure Barnyard Run Barnyard in modes operation: one-shot mode, continual checkpoint mode. Register Your 1 Year Upgrade The Syngress Solutions upgrade plan protects you from content obsolescence provides monthly mailings, whitepapers, more!