Review: Nose Around With Snort


The name Snort may conjure images of a specially trained swine sniffing out truffles. But Snort isn't an animal--it's an IDS (intrusion-detection system) with a rich language for matching patterns in network traffic. Snort provides a slimmed down, customized signature set to detect defined policy violations. It can determine, for instance, whether specific protocols are in violation of a security policy.
Let's face it, unless you're actively policing security-policy compliance, just having words in a document won't make you secure--you have to find policy violations and enforce your policies. Some of the products that prevent policy violations are pricey, but free and open-source Snort may be the only tool you need.
-
- Login or register to post comments
Printer-friendly version
- 1390 reads
PDF version
More in Tux Machines
- Highlights
- Front Page
- Latest Headlines
- Archive
- Recent comments
- All-Time Popular Stories
- Hot Topics
- New Members
today's howtos
| Android Leftovers |
University students create award-winning open source projects
In my short time working for Clarkson University, I've realized what a huge impact this small university is making on the open source world. Our 4,300 student-strong science and technology-focused institution, located just south of the Canadian border in Potsdam, New York, hosts the Clarkson Open Source Institute (COSI), dedicated to promoting open source software and providing equipment and support for student projects.
While many universities offer opportunities for students to get involved in open source projects, it's rare to have an entire institute dedicated to promoting open source development. COSI is part of Clarkson's Applied Computer Science Labs within the computer science department. It, along with the Internet Teaching Lab and the Virtual Reality Lab, is run by students (supported by faculty advisers), allowing them to gain experience in managing both facilities and projects while still undergraduates.
| Linux 4.17-rc2
So rc2 is out, and things look fairly normal.
The diff looks a bit unusual, with the tools subdirectory dominating,
with 30%+ of the whole diff. Mostly perf and test scripts.
But if you ignore that, the rest looks fairly usual. Arch updates
(s390 and x86 dominate) and drivers (networking, gpu, HID, mmc, misc)
are the bulk of it, with misc other changes all over (filesystems,
core kernel, networking, docs).
We've still got some known fallout from the merge window, but it
shouldn't affect most normal configurations, so go out and test.
Linus
|
Recent comments
18 hours 11 min ago
19 hours 21 min ago
1 day 43 min ago
2 days 1 hour ago
3 days 7 hours ago
3 days 7 hours ago
3 days 19 hours ago
3 days 20 hours ago
4 days 15 hours ago
4 days 15 hours ago