Welcome to ftp.nluug.nl Current directory: /ftp/os/Linux/distr/salix/sbo/13.37/network/snort/ |
|
Contents of README:Snort is an open source network intrusion detection and prevention system. It is capable of performing real-time traffic analysis, alerting, blocking and packet logging on IP networks. It utilizes a combination of protocol analysis and pattern matching in order to detect a anomalies, misuse and attacks. Snort uses a flexible rules language to describe activity that can be considered malicious or anomalous as well as an analysis engine that incorporates a modular plugin architecture. Snort is capable of detecting and responding in real-time, sending alerts, performing session sniping, logging packets, or dropping sessions/packets when deployed in-line. Snort has three primary functional modes. It can be used as a packet sniffer like tcpdump(1), a packet logger (useful for network traffic debugging, etc), or as a full blown network intrusion detection and prevention system. This requires libdnet and daq. |
Name Last modified Size
Parent Directory - README 15-Apr-2011 00:00 919 README.SLACKWARE 15-Apr-2011 00:00 4.6K doinst.sh 15-Apr-2011 00:00 883 rc.snort 15-Apr-2011 00:00 893 slack-desc 15-Apr-2011 00:00 1.0K snort.SlackBuild 26-Nov-2011 00:00 5.3K snort.info 26-Nov-2011 00:00 313
NLUUG - Open Systems. Open Standards
Become a member
and get discounts on conferences and more, see the NLUUG website!