Re: Systm monitoring

From: Alex Holst (none@a--area51.dk.lh.bsd-dk.dk)
Date: Wed 19 Sep 2001 - 01:31:39 CEST

Next message: Michael Aronsen: "SV: [FreeBSD] sysctl.conf"
Previous message: Rasmus Barfoed: "Re: Mac OS og fildeling med freebsd"
In reply to: Jeppe Liisberg: "Systm monitoring"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

Date: Wed, 19 Sep 2001 00:31:39 +0100
From: Alex Holst <none@a--area51.dk.lh.bsd-dk.dk>
To: bsd-dk@bsd-dk.dk
Subject: Re: Systm monitoring

Quoting Jeppe Liisberg (dsl49885@vip.cybercity.dk):
> 2. Noget til at holde øje med sikkerheden på mine bokse...
> Kigger her på snort (www.snort.org) men vil ligeledes gerne høre om
> erfaringer og/eller anbefalinger...

Snort er et Network IDS. Det kan du kigge paa bagefter. Det vil give dig
langt stoerre vaerdi at faa et Host-based IDS op at koere som kan fortaelle
dig hvis der sker aendringer til dine systemfiler.

http://a.area51.dk/sikkerhed/ordforklaring#ids

Du kan tage et kig paa Samhain. Host-based IDS er langt vigtigere end Snort
og IPfilter. Alt for faa mennesker indser dette.

http://la-samhna.de/samhain/

-- 
I prefer the dark of the night, after midnight and before four-thirty,
when it's more bare, more hollow.                  http://a.area51.dk/

Next message: Michael Aronsen: "SV: [FreeBSD] sysctl.conf"
Previous message: Rasmus Barfoed: "Re: Mac OS og fildeling med freebsd"
In reply to: Jeppe Liisberg: "Systm monitoring"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b30 : Wed 15 Nov 2006 - 18:24:15 CET