Not everyone has “l33t skilz” or mass amounts of hardened TCP/IP stack programming experience. When I’m at work, I don’t look at logs all day long, nor do I run security audits every five minutes. I do my job, which takes all of my time. This is the situation for most small to medium sized companies that have only a few IT guys. So how does an everyday IT guy handle the constant threat of impending attack?
Link: Linux Journal
