I just set up a shorewall box for my dorm room on a resnet. I'm making heavy use of blacklists and now I'm wondering about a few things:<BR><BR>1. Is it wise to have snort listen on the WAN eth?<BR>2.

Properly placed within the topology of the network, Snort gives you the best bang for the buck in an IDS. There is a package out there that combines Snort, Dans Guardian, Squid, and a couple of others ...

Designed to fill the gap left by expensive, heavy-duty network intrusion detection systems, Snort is a free, cross-platform packet sniffer, logger, and intrusion detector for monitoring smaller TCP/IP ...

Snort is a powerful open source intrusion detection system (IDS). What surprises me is how many security people have never touched it to learn more about how IDS works -- or how easy it is to evade ...