Snort mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Hardening the snort W2K Box inside DMZ.

From: Tom Sevy <tsevy () epx com>
Date: Thu, 30 Aug 2001 11:25:55 -0400
Have you considered trying to add another NIC card, and de-selecting the
binding for TCP/IP on this nic, and then using it to snort with?

-----Original Message-----
From: Boisvert, Mario [mailto:mboisvert () melochemonnex com] 
Sent: Thursday, August 30, 2001 11:04 AM
To: 'snort-users () lists sourceforge net'
Subject: [Snort-users] Hardening the snort W2K Box inside DMZ.


Hi All,

I'am new to Snort.  I have snort running on my W2K box w/acid,  no problem,
thanks to Micheal Steele for is paper.

But, I would like to secure it a little bit;

1) Can I filter all incomming IP connection, (Windows, IP configuration,
TCP/IP configuration, advance) to allows only HTTPS connection to the server
and still be able to sniff the traffic?

2) Is there any know problem with enabling SSL to access Acid?

3) Any other suggestions?  Securing PHP script?  Securing MySQL database?

Thanks in advance

Mario

mboisvert () melochemonnex com



_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
http://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
http://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: