* added information about avail flavors
* added useful infromation about snort
This commit is contained in:
bmc
parent
147392010e
commit
672f3eb763
@ -1,4 +1,22 @@
|
||||
Snort is a fairly intelligent sniffer/NIDS, with a very strong rule set
|
||||
ability.
|
||||
|
||||
Snort can perform protocol analysis, content searching/matching and can be
|
||||
used to detect a variety of attacks and probes, such as buffer overflows,
|
||||
stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts,
|
||||
and much more.
|
||||
|
||||
Snort uses a flexible rules language to describe traffic that it should
|
||||
collect or pass, as well as a detection engine that utilizes a modular
|
||||
plugin architecture. Snort has a real-time alerting capability as well,
|
||||
incorporating alerting mechanisms for syslog, a user specified file, a
|
||||
UNIX socket, or WinPopup messages to Windows clients using Samba's
|
||||
smbclient.
|
||||
|
||||
WWW: ${HOMEPAGE}
|
||||
|
||||
Available flavors:
|
||||
postgresql - enable postgresql database logging support
|
||||
mysql - enable mysql database logging support
|
||||
smbalert - enable samba logging support
|
||||
flexresp - enable dynamic connection killing support
|
||||
|
||||
Loading…
Reference in New Issue
Block a user