[Snort-users] way for test snort ?

Matt Nelson nelsbels at ...8677...
Thu May 22 15:54:08 EDT 2003


to test get a port scanner and scan something. or if you have your porn
rules on, surf some porn.

-----Original Message-----
From: snort-users-admin at lists.sourceforge.net
[mailto:snort-users-admin at lists.sourceforge.net]On Behalf Of payothlh
Sent: Thursday, May 22, 2003 4:40 PM
To: snort-users at lists.sourceforge.net
Subject: [Snort-users] way for test snort ?


Hi gang,

I have installed Snort-Acid-Mysql-etc ....etc..... on Solaris9

All is OK and I am very happy with.

But now, I must test it quickly.
What is the best way for that ?
How do you test  effectively each rules in a quick way ?

I had a look on the prog snot but I haven't very confidence for adopt it
quickly without have a look on the source code quickly.

As second query, how do you phohibit the usage of prog as snot by an
internal user ?
He can generate several thousands alert just for fun.
Of course, as it's an internal user, it's possible to go see it directly.
But, is there an protection for this if the type of Denial Of Service
was made by an external user ( or an external user spoofing an internal
user ) ?

Thanks in advance for your answers and councils.

Guillaume



-------------------------------------------------------
This SF.net email is sponsored by: ObjectStore.
If flattening out C++ or Java code to make your application fit in a
relational database is painful, don't do it! Check out ObjectStore.
Now part of Progress Software. http://www.objectstore.net/sourceforge
_______________________________________________
Snort-users mailing list
Snort-users at lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users





More information about the Snort-users mailing list