Re: Snort / Linux on floppy

[Chris Nye <Chris () AtBaySecurity com>]

Trinux does exactly this. Have a look at the Trinux packages for IDS and 
sniffer support (snort is supported). I have used Trinux in the past. I am 
always quite pleased with functional, reliable, and versatile Trinux is.

Trinux homepage - http://trinux.sourceforge.net/
Trinux supported packages - http://trinux.sourceforge.net/

Good luck,
nyec

On Monday 23 June 2003 6:16 am, mae () ium no wrote:
> I want to set up a Linux box with Snort but when I first are going to do
> it, I want to do it right. Is it possible to run Linux and Snort from a
> single floppy? I want to set up an IDS system on both sides of the
> firewall
 and am concerned about the security on the outside sniffer. I
> believe a “write protected” floppy where Snort exports the log would be the
> secure way but I don't know anyone who has tested it. Will the system
> respond to slow on an 11mbit line?
> I have weary little experience, all inputs would be appreciated!
>
> Are there any good IPS Open source projects?? I've tested the NS IPS box
> and its quite good but the price is not compatible with my budget! :)
>
>
> Brgs
> Martin Engervik


-------------------------------------------------------------------------------
Attend the Black Hat Briefings & Training, July 28 - 31 in Las Vegas, the
world's premier technical IT security event! 10 tracks, 15 training sessions,
1,800 delegates from 30 nations including all of the top experts, from CSO's to
"underground" security specialists.  See for yourself what the buzz is about!
Early-bird registration ends July 3.  This event will sell out. www.blackhat.com
-------------------------------------------------------------------------------