Publisher: SAMS, 2003, 340 pages
ISBN: 1-57870-281-X
Keywords: IT Security
The authoritative guide to the Snort intrusion detection system
Snort is the most popular open-source intrusion detection system. With more than 100.000 installations worldwide, it has become one of the hottest security applications available. By meeting and beating the majority of the features and the raw performance of multimillion dollar commercial intrusion detection systems, and by strictly adhering to the open-source model of public distribution free of cost, Snort has gained rapid acceptance in both enterprise and small office/home environments.
Intrusion Detection with Snort is a hands-on guide to designing, installing, and maintaining a Snort deployment in networks of all sizes. Real-world examples that get you through such critical tasks as sensor-placement, real-time alerting, and tuning are presented in an easy-to-follow manner that allows you to develop a rapid understanding of how to use Snort.
Intrusion Detection with Snort includes a comprehensive walk-through that covers the installation and configuration of Snort on many different platforms, the selection and deployment of a Snort management GUI, and a detailed examination of Snort's internals, including the Snort preprocessors. Advanced topics, such as Snort rule writing, upgrading, and using Snort as an intrusion prevention device are covered as well.
All the nitty-gritty about Snort that you wanted (or not wanted) to know. It is a bit talkative, but if you can live with that, it is a good book, especially as the author tries to explain how to DEPLOY Snort, not just use it.
Comments
There are currently no comments
New Comment