Results 1 to 6 of 6
  1. #1
    Join Date
    Oct 2005
    Posts
    393

    What should I use for IDS?

    What should I use for IDS?

  2. #2
    Snort
    Snort.org

  3. #3
    Join Date
    Oct 2005
    Posts
    393
    I have a busy server, snort logs too much, what else can I use?

  4. #4
    You can always customize the rule-set and logging options with Snort. My personal favorite.

    Regards,

    Aaron

  5. #5
    Take a look at ossec.net - open source host based IDS.

    Runs on Windows and Linux, though I havent tested the Windows version.
    Test Internet servers for security vulnerabilities and open ports
    Online port scanners and IP Tools from HackerTarget.com

  6. #6
    Join Date
    Jan 2005
    Location
    Scotland, UK
    Posts
    2,549
    Quote Originally Posted by jalapeno55 View Post
    I have a busy server, snort logs too much, what else can I use?
    Then you need to configure your rules if set they are setting off false positives or if you only want to see specific data.

    Having a "busy" server and "snort logs too much" makes no sense at all if you actually need to use an IDS.
    Server Management - AdminGeekZ.com
    Infrastructure Management, Web Application Performance, mySQL DBA. System Automation.
    WordPress/Magento Performance, Apache to Nginx Conversion, Varnish Implimentation, DDoS Protection, Custom Nginx Modules
    Check our wordpress varnish plugin. Contact us for quote: [email protected]

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •