Snort mailing list archives
Linux Snort-Inline Toolkit (fwd)
From: Erek Adams <erek () snort org>
Date: Wed, 8 Jan 2003 16:00:22 -0500 (EST)
Just incase some folks may not have seen this. ----- Erek Adams "When things get wierd, the wierd turn pro." H.S. Thompson ---------- Forwarded message ---------- Date: Wed, 8 Jan 2003 11:01:59 -0600 (CST) From: Lance Spitzner <lance () honeynet org> To: honeypots () securityfocus com Subject: Linux Snort-Inline Toolkit The Honeynet Project has been working with IDS Gateway technology for use as a Data Control mechanism. As many of you know, an IDS gateway combines the detection capability of a traditional NIDS, but adds the filtering capability of a firewall. Once such example is Snort-Inline, a modified version of Snort 1.9. Developed by Jed Haile, this patched version of Snort can not only detect malicious activity, but Drop or even Modify it. To help promote the understanding and development of Snort-Inline, the Honeynet Project has released the Linux Snort-Inline Toolkit. This toolkit has a statically precompiled Snort-Inline binary for Linux, documentation, and a rules converter script. You can find the toolkit at the Honeynet Tools section. http://www.honeynet.org/papers/honeynet/tools/ As always, input and suggestions appreciated. Thanks! -- Lance Spitzner http://www.tracking-hackers.com ------------------------------------------------------- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Linux Snort-Inline Toolkit (fwd) Erek Adams (Jan 08)