[Snort-users] way for test snort ?

Johan Sunnerstig Johan.Sunnerstig at ...6624...
Fri May 23 00:29:03 EDT 2003


Run a Nessus scan against the box.
www.nessus.org
It's a very handy tool for alot of things, and testing snort is one of them
:)

Regards
Johan

-----Original Message-----
From: payothlh [mailto:payothlh at ...5786...]
Sent: den 22 maj 2003 23:40
To: snort-users at lists.sourceforge.net
Subject: [Snort-users] way for test snort ?


Hi gang,

I have installed Snort-Acid-Mysql-etc ....etc..... on Solaris9

All is OK and I am very happy with.

But now, I must test it quickly.
What is the best way for that ?
How do you test  effectively each rules in a quick way ?

I had a look on the prog snot but I haven't very confidence for adopt it 
quickly without have a look on the source code quickly.

As second query, how do you phohibit the usage of prog as snot by an 
internal user ?
He can generate several thousands alert just for fun.
Of course, as it's an internal user, it's possible to go see it directly.
But, is there an protection for this if the type of Denial Of Service 
was made by an external user ( or an external user spoofing an internal 
user ) ?

Thanks in advance for your answers and councils.

Guillaume



-------------------------------------------------------
This SF.net email is sponsored by: ObjectStore.
If flattening out C++ or Java code to make your application fit in a
relational database is painful, don't do it! Check out ObjectStore.
Now part of Progress Software. http://www.objectstore.net/sourceforge
_______________________________________________
Snort-users mailing list
Snort-users at lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users




More information about the Snort-users mailing list