[Snort-users] Wireless IDS setup experience

sam wun sam.wun at ...12784...
Fri Feb 18 01:15:07 EST 2005


Thanks for a quick reply.
Which Wireless server PCI cards can be used?

Thanks
Sam

William Fitzgerald wrote:

>I have just set one up.
>Yes it can detect RougueAP, Antistumbler traffic along with auth and
>deauth flood attacks.
>
>Grab a copy of snort-2.1.1 then got to snort-wireless.org and grap both
>the snort-2.1.1 wirless patch and the snort-2.1.1 database patch.
>
>Below is the list of software I needed:
>MySQL: mysql-standard-4.1.9-pc-linux-gnu-i686
>Automake: automake-1.6.1 
>Snort: snort-2.1.1 
>Snort-Wireless patches: Snort-2.1.1-wireless 
>Zlib: zlib-1.2.1 [7]	JPEG: jpeg-6b 
>Libpng: libpng-1.2.8 
>GD: gd-2.0.33 
>Apache: httpd-2.0.52
>PHP: php-4.3.10
>ADODB: adodb460 
>ACID: acid-0.9.6b23 
>PHPLOT: phplot-5.0rc2 
>JPGRAPH: jpgraph-1.17 
>BASE: base-1.0.1 
>Linux: Debian Linux
>
>Regards,
>Will.
>
>Mr.William M. Fitzgerald (MSc,BSc),
>Applied Researcher,
>Telecommunications Software & Systems Group,
>Waterford Institute of Technology,
>Cork Rd.
>Waterford.
>Office Ph: +353 51 302937
>Mobile Ph: +353 87 9527083
>Web: www.williamfitzgerald.org/
>
>
>Hi,
>
>Does anyone have experience in setting up snort as a wireless IDS? I m
>wondering whether snort can be used to monitor for rogus AP access. What
>can be used as a wireless monitoring console? Is there any documentation
>I can read on?
>
>Thanks
>Sam
>
>
>  
>




More information about the Snort-users mailing list