Hi Gregory, Just my 0.2€ experience about Snort. I used it on both OS : Freebsd and Windows 2000. It's abyway a very good product, easely customisable, with a huge ressource of plug-in and so on. On w2K, I used the Howto from Sillicondefense (www.sillicondefense.com Support.) This is working very fine with a MySQL DB, and ACID. Just a remark : Using it in a large network, could face to a CPU usage problem if used in WIN2K.. I saw that Snort was taking a lot of resources under W2k (who already take a lot for himself.) To be more secure, after installing like Sillicondefense says, you should harden the machine, downstripping, patch, change the password, and use a Read-only Ethernet cable on the sensor side..
Don't hesitate to contact me off-list, should you have more info needed.. Good luck. Max. -----Original Message----- From: Gregory Pipkins [mailto:[EMAIL PROTECTED]] Sent: dimanche 10 mars 2002 01:25 To: [EMAIL PROTECTED] Subject: Any comments on using SNORT Hello, I am looking a broading my knowledge of using different types of IDS programs. Snort seems like a good open source program. http://www.snort.org Does anyone have any comments about using Snort on their systems? Looking for comments also toward running SNORT on a Windows based system vs Unix/Linux systems. Thanks for your time. Gregory Pipkins ------------------------------------------------ Defend Your Domain! Stop Losing Profits! Discover one simple technique that can multiply the success rate of all your marketing efforts! http://einsiders.gregorypipkins.com ------------------------------------------------ _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Visit our website! http://www.nbb.be "DISCLAIMER: The content of this e-mail message does not constitute a commitment of the National Bank of Belgium (NBB) except where provided for in a written agreement between you and the NBB or where confirmed with a written form approved according to the internal regulations of the NBB. Besides, the statements and opinions expressed in this e-mail message are those of the author of the message and do not necessarily represent those of the NBB. The e-mail message contains proprietary information intended for the intended recipient only. If an addressing or transmission error has misdirected this e-mail, please notify the author. If you are not the intended recipient you must not use, disclose, distribute, copy, print or rely on any part of this e-mail message."
