Educause Security Discussion mailing list archives

Re: Intrusion Detection Recommendations

From: Graham Toal <gtoal () UTPA EDU>
Date: Tue, 9 Aug 2005 11:08:51 -0500

Gary Dobbins wrote:

Rather than ACID (which has apparently fallen out of active maint) we
now manage our array or SNORTia with a combination of BASE and Aanval.
 The former is at no charge, while there is a license required for the
latter.



Also we are using SGUIL (http://sguil.sourceforge.net/)

Been pretty successful.  Helps if you know SQL.

G

Current thread:

Intrusion Detection Recommendations Mike Radomski (Aug 09)
- <Possible follow-ups>
- Re: Intrusion Detection Recommendations Gibbs, Aaron M. (Aug 09)
- Re: Intrusion Detection Recommendations Gary Dobbins (Aug 09)
- Re: Intrusion Detection Recommendations Cebulski, John (Aug 09)
- Re: Intrusion Detection Recommendations wcon (Aug 09)
- Re: Intrusion Detection Recommendations Dean De Beer (Aug 09)
- Re: Intrusion Detection Recommendations Graham Toal (Aug 09)
- Re: Intrusion Detection Recommendations Jason Richardson (Aug 09)
- Re: Intrusion Detection Recommendations Wes Simons (Aug 09)
- Re: Intrusion Detection Recommendations John Kemp (Aug 09)
- Re: Intrusion Detection Recommendations Scott Genung (Aug 09)
- Re: Intrusion Detection Recommendations James Riden (Aug 09)
- Re: Intrusion Detection Recommendations Gary Flynn (Aug 12)