In our first two installments on intrusion detection (see Resources), we got as far as setting up a Snort sensor on our network. Now it’s time to set it up to automatically collect new rulesets, and set up BASE (Basic Analysis and Security Engine) to present all that data in a nice digestible way with graphs and sorting tools.
Link: enterprisenetworkingplanet.com
Category:
- Linux
