On Tue, 2004-08-10 at 23:07, Dan MacNeil wrote:
> On Tue, 10 Aug 2004, Tinus Nijmeijers wrote:
>
> > On Fri, 2004-08-06 at 19:57, Dan MacNeil wrote:
> > > > I also want to use something like tripwire to set up file intregity.
> > >
> > > apt-cache search tripwire
> > > apt-cache show aide
> >
On Tue, 10 Aug 2004, Tinus Nijmeijers wrote:
> On Fri, 2004-08-06 at 19:57, Dan MacNeil wrote:
> > > I also want to use something like tripwire to set up file intregity.
> >
> > apt-cache search tripwire
> > apt-cache show aide
> >
> I know, and, as I mentioned, they both seem OLD.
I be
At 06:55 PM 8/9/04 -0600, Nate Duehr wrote:
>Tripwire bills itself as a defensive tool, but if tripwire alerts are
>going off, it's FAR too late. Better to keep untrusted people out in
>the first place. Most people spend the majority of their security
>efforts on that first.
Yes. Tripwire et
On Aug 9, 2004, at 4:21 PM, Tinus Nijmeijers wrote:
can I assume that no-one here uses a file-integrity checker?
Saying that "no one here" uses tools like that is probably a bit
reactionary, but I'd say most people here do know that such tools have
a very limited application... to tell you it's t
On Fri, 2004-08-06 at 19:57, Dan MacNeil wrote:
> > I also want to use something like tripwire to set up file intregity.
>
> apt-cache search tripwire
> apt-cache show aide
>
I know, and, as I mentioned, they both seem OLD.
> On Fri, 6 Aug 2004, Tinus Nijmeijers wrote:
>
> > I'm loo
The only problem with tripwire is that u have to set up the snapshot file on
write protected media to have true security. If somebody hacks ur box they
can just reupdate tripwire themselves and u'll be none the wiser. This can
be an administrative hassle to update the snapshot and move it to some
> I also want to use something like tripwire to set up file intregity.
apt-cache search tripwire
apt-cache show aide
On Fri, 6 Aug 2004, Tinus Nijmeijers wrote:
> I'm looking at securing a new server.
>
> i'll be using iptables to restrict acces and i want to install SNORT to
>
I'm looking at securing a new server.
i'll be using iptables to restrict acces and i want to install SNORT to
watch the network.
I also want to use something like tripwire to set up file intregity.
however: tripwire seems OLD, last version (2.3.1) is from march 3, 2001
i've also seen AIDE ment
Hello
Has anybody here ideas or experience in building an Intrusion Detection
System for a big network i.e. at least several hundred MBit/s with focus on
detection of (D)DoS and worm attacks (e.g. sudden activity peaks towards one
system or well known worm patterns from systems)?
Last time I chec
k that it was a realtime IDS. Now, i need something similar, but i
> haven't found anything similar, so i'm using AIDE. Anyone knows
> something like a realtime IDS? I need it for my servers.
>
> Ghe Rivero
>
> PD.- I lost that account forever :(
Or was it ju
Hi!
Some years ago, i was playing on a machine with a user account, and
when i tried to make a chroot, it notified me that a mail for the
administrator was send due to an intent to compromise the machine. I
think that it was a realtime IDS. Now, i need something similar, but i
haven&#
k that it was a realtime IDS. Now, i need something similar, but i
> haven't found anything similar, so i'm using AIDE. Anyone knows
> something like a realtime IDS? I need it for my servers.
>
> Ghe Rivero
>
> PD.- I lost that account forever :(
Or was it ju
Hi!
Some years ago, i was playing on a machine with a user account, and
when i tried to make a chroot, it notified me that a mail for the
administrator was send due to an intent to compromise the machine. I
think that it was a realtime IDS. Now, i need something similar, but i
haven&#
13 matches
Mail list logo
