Complete Snort-based IDS Architecture, Part Two

by Anton Chuvakin and Vladislav V. Myasnyankin
Sept. 24, 2017 1 comment Symantec Detection & Response architecture hardware software

Many companies find it hard to justify acquiring the IDS systems due to their perceived high cost of ownership. However, not all IDS systems are prohibitively expensive. This is second part of a two-part article that will provide a set of detailed directions to build an affordable intrusion detection architecture from hardware and freely available software. In this installment we shall discuss Web interface configuration, summaries and daily reporting, automated attack response, sensor installation, installation of the central station, and big distributed IDS systems.

2flash 7 months, 1 week ago

Can't really make my head around this presentation... sorry to say so, but the terminology is quite.... wrongfully used.