On Tue, 1 May 2001, Neil Dickey wrote:

> Snort is an extremely good bit of IDS software, but I can't remember
> ever seeing a "Whoopeee, I caught the wretch" posting. That seems to
> be a somewhat personal event -- largely, I expect, because publishing
> an account of a "successful" use of your IDS system would tell the
> whole world about your security arrangements in some detail.

For 'success' stories, I recommend you check out http://project.honeynet.org.
The Honeynet Project has been using snort for over a year now to track
the blackhat community. Not only has it proven as an excellent IDS
system, but great sniffer functionality, such as session breakout.

lance

_______________________________________________
Snort-users mailing list
Snort-userslists.sourceforge.net
Go to this URL to change user options or unsubscribe:
http://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]