Women in Technology

Hear us Roar


Article:
  A Security Primer for Mac OS X
Subject:   No mention of Snort
Date:   2004-02-23 16:47:30
From:   bdyck
I know that running an IDS is perhaps something of an esoteric subject, but you did mention using software like CheckMate to perform tripwire-type checks, and Snort seemed conspicuously absent.. :)


There's a great OS X-native installer/utility app called HenWen that installs Snort and provides a very easy to use management interface. It's extremely powerful, and can be configured to log to a database as well as send alerts to a Unix socket so that the bundled notification app can send email and/or pop up a warning dialog.


More info here: http://seiryu.home.comcast.net/henwen.html
Full Threads Oldest First

Showing messages 1 through 1 of 1.

  • FJ de Kermadec photo It's on purpose...
    2004-02-24 01:09:37  FJ de Kermadec | O'Reilly Blogger [View]

    Hi !

    First of all, thank you very much for taking the time to post your feedback, I really do appreciate it !

    I did not mention Snort on purpose. Indeed, as powerful as this application can be, it also requires a certain level of knowledge to effectively set up -- even by using a specially packaged version of Snort.

    Also, like any complex application, Snort has been at the root of security issues in the past. Would it be installed but not maintained on a daily basis, this could effectively weaken the security systems set by the user of a computer.

    Thanks again !

    F.J.

Recommended for You
 
Sign up today to receive special discounts,
product alerts, and news from O'Reilly.
Privacy Policy >
View Sample Newsletter >