Re: Newbie question

["Patrick Harper" <lists () internetsecurityguru com>]

Newbie questionyou might want to put a second interface on it and firewall off the services you don't want.  that way 
you can have internet, FTP, and anything else access to the box if you need it.  Flexresp is an option when doing your 
./configure.  Rerun configure with the --enable-flexresp option and rebuild/reinstall (from the FAQ)
  ----- Original Message ----- 
  From: Chewie 
  To: snort-users () lists sourceforge net 
  Sent: Sunday, April 21, 2002 1:21 AM
  Subject: [Snort-users] Newbie question


  Hey guys, I am a real newb to Snort, but I am trying to work through it and learn.  I have Snort 1.8.4 installed and 
running on my Redhat 7.2 box on a stealth interface (No IP address) and am looking to do a couple of things.

  1.  Upgrade to the latest and greatest 
  2.  Get alerting working 
  3. Get it logging to a database 
  4. Get Flexresp installed and working with it 
  5. And finally get Demarc up for quick veiwing 

  What I am looking for is documentation.  The Snort Manual is a great reference but does not go into all of the things 
I am asking for.

  Any ideas? 

  Thanks in advance, 

  Chewie 

  -------------------------------------- 
  And the Geeks shall inherit the Earth. 
  --------------------------------------