[ale] Intrusion Detection. LIDS

Jason Lynn jason_lynn_ at hotmail.com
Mon Jul 30 14:02:54 EDT 2001 

This may or may not be helpful. http://www.tripwire.org

Jason


>From: Ned Williams <nwilliams at interland.net>
>To: SAngell at nan.net, ale at ale.org
>Subject: Re: [ale] Intrusion Detection. LIDS
>Date: Mon, 30 Jul 2001 13:53:58 -0400
>MIME-Version: 1.0
>Received: from [130.205.99.162] by hotmail.com (3.2) with ESMTP id 
>MHotMailBD2EEA8D00784004371682CD63A210630; Mon, 30 Jul 2001 10:55:26 -0700
>Received: (qmail 32419 invoked by alias); 30 Jul 2001 18:14:34 -0000
>Received: (qmail 32394 invoked by uid 30); 30 Jul 2001 18:14:32 -0000
>Received: (qmail 32374 invoked from network); 30 Jul 2001 18:14:26 -0000
>Received: from unknown (HELO atl2ims.corp.interland.net) (63.96.156.17)  by 
>130.205.99.162 with SMTP; 30 Jul 2001 18:14:26 -0000
>Received: from interland.net (gold5 [192.168.6.76]) by 
>atl2ims.corp.interland.net with SMTP (Microsoft Exchange Internet Mail 
>Service Version 5.5.2653.13)id PC4RL73T; Mon, 30 Jul 2001 13:52:21 -0400
>From owner-ale at ale.org Mon, 30 Jul 2001 10:55:33 -0700
>Delivered-To: ale-outgoing at ale.org
>Message-ID: <3B659F36.12E20B25 at interland.net>
>X-Mailer: Mozilla 4.72 [en] (X11; U; Linux 2.2.14-5.0 i686)
>X-Accept-Language: en
>References: <85256A99.005F04EE.00 at mail.nan.net>
>Sender: owner-ale at ale.org
>Precedence: bulk
>
>SAngell at nan.net wrote:
>
> > Does anyone out there use Linux based Intrusion Detection to protect 
>their
> > network? If so what are you using and where are all the great resources? 
>Do any
> > have web management interfaces? Lastly, do they have the capability to 
>generate
> > reports? I currently have ISS real secure deployed along with Checkpoint 
>FW-1
> > and am in the process of adding an internal firewall running linux and 
>would
> > like to have an internal network sensor  on linux to monitor LAN for 
>traffic
> > outside of DMZ. Current network sensor is located between firewall and 
>router
> > and with the cost of the licensing for ISS I would like another option.
> >
> > Steve Angell,  MCSE, CCNA
> > MIS Operations Manager
> > TSYS Total Debt Management
> > Phone 770-409-5570
> > Fax      770-416-1752
> >
> > --
> > To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message 
>body.
>
>Why not look at turning on the SNMP function of your check point firewall 
>and poll
>it with MRTG,OpenView,Concord,UCD snmpget or other product. Build  your 
>reports
>from there.
>
>Ned
>
>
>--
>To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message 
>body.


_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp

--
To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message body.

More information about the Ale mailing list