RE: IDS evaluation
From: Reverman, Peter C (peter.c.reverman@intel.com)Date: 08/22/02
- Previous message: Stefan Dens: "Re: Re: IDS evaluation"
- Maybe in reply to: Elijah Savage: "IDS evaluation"
- Next in thread: Loki: "Re: IDS evaluation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Reverman, Peter C" <peter.c.reverman@intel.com> To: "'Frank Smith'" <fsmith@hoovers.com>, Johannes Ullrich <jullrich@euclidian.com>, Saad Kadhi <bsdguy@docisland.org> Date: Thu, 22 Aug 2002 10:31:18 -0700
Have you looked at www.activeworx.com for the an open source central
management console for multi-sensor SNORT signature management. It might
help.
Peter
-----Original Message-----
From: Frank Smith [mailto:fsmith@hoovers.com]
Sent: Thursday, August 22, 2002 9:36 AM
To: Johannes Ullrich; Saad Kadhi
Cc: focus-ids@securityfocus.com
Subject: Re: IDS evaluation
--On Thursday, August 22, 2002 12:25:41 -0400 Johannes Ullrich
<jullrich@euclidian.com> wrote:
>> I'm a Snort fan but deploying 12 of them with central management needs
>> good expertise and multi-tool gluying skills.
>
> same here (snort fan). But I guess if you are comparing it to
> commercial products like Dragon, you should consider the
> commercial/supported version of snort from Sourcefire. I haven't
> had a chance to use it yet. But I understand they offer a central
> management console and a 'plug and play' appliance (hardware with
> pre-installed snort sensor).
Depending on the wheres and hows of your snort deployment, you might
want to look at the snort-mysql-acid combination for central reporting.
Frank
- Previous message: Stefan Dens: "Re: Re: IDS evaluation"
- Maybe in reply to: Elijah Savage: "IDS evaluation"
- Next in thread: Loki: "Re: IDS evaluation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
