Educause Security Discussion mailing list archives

Security Onion - IDS build

From: Sunil Singh <spsfirst () HOTMAIL COM>
Date: Sat, 7 Apr 2018 11:36:53 +0000

We at ISU are looking for replacing our IDS. At this point of time, we are developing concept, so looking for input and 
suggestions into building Security Onion. Few things I am looking for help :


  *   Cost breakdown of hardware for a medium to large University.
     *   Storage cost may be the biggest as we plan to do full packet capture. How many days of data are you keeping ?
     *   Sensor cost
  *   Sites to reference outside regular Security onion site/ Github. I am looking for more help on Bro.
  *   Benefits Institution has seen and what different things they are doing. Example -  IPV6 packet capture, 
Monitoring.

Thanks.


Sunil Singh
Director Information Security
Iowa State University.

Current thread:

Re: PCI Responsability, (continued)
- Re: PCI Responsability Charles Curtis (Apr 06)
  - Re: PCI Responsability Ronald King (Apr 06)
- Re: PCI Responsability Pardonek, Jim (Apr 06)
  - Re: PCI Responsability Sunil Singh (Apr 06)
    - Re: PCI Responsability Nevin, Dave (Apr 06)
    - Re: PCI Responsability Jason Edelstein (Apr 06)
    - Re: PCI Responsability Ben Marsden (Apr 06)
    - Re: PCI Responsability Josh Callahan (Apr 06)
- Re: PCI Responsability Ken Connelly (Apr 06)
  - Re: PCI Responsability Lazarus, Carolann (Apr 06)
    - Security Onion - IDS build Sunil Singh (Apr 07)
- Re: PCI Responsability Laura Raderman (Apr 06)
- Re: PCI Responsability Rob Milman (Apr 06)
- Re: PCI Responsability Penn, Blake C (Apr 09)
  - Re: PCI Responsability Dennis Bolton (Apr 09)
    - Re: PCI Responsability Ronald King (Apr 13)
- Re: PCI Responsability Carlos S Lobato (Apr 06)
  - Re: PCI Responsability Ronald King (Apr 06)