In a column about syslog [see “syslog Configuration” in the December 2001 issue of LJ] I mentioned “stealth logging”--by running your central log server without an IP address, you can hide your ...

Designed to fill the gap left by expensive, heavy-duty network intrusion detection systems, Snort is a free, cross-platform packet sniffer, logger, and intrusion detector for monitoring smaller TCP/IP ...

The 10-year-old Snort IDS/IPS technology on which many of today's intrusion prevention products are based is poised for a face-lift. Sourcefire, which develops the open source Snort tool, today ...

Because they are willing to spend money, businesses typically get a higher level of network security than consumers. The typical home broadband setup has a simple router, perhaps with integrated wi-fi ...

When our home LAN graduated to a 24x7 Internet connection, my Linux box became the firewall and the router. I liked the ability to customize the firewall, and by using Snort I could keep an eye on the ...

Snort is a powerful open source intrusion detection system (IDS). What surprises me is how many security people have never touched it to learn more about how IDS works -- or how easy it is to evade ...