No subject


Thu Nov 23 16:36:19 EST 2017


is a great deal of interest in this, particularly if it were open sourced.

/benjamin

-----Original Message-----
From: Paul Gillingwater [mailto:paul at ...9449...]
Sent: Thursday, June 12, 2003 12:10 PM
To: Walzer, Jeff
Cc: snort-users at lists.sourceforge.net
Subject: Re: [Snort-users] How to lock down a RedHat box running Snort?


We use Bastille (http://www.bastille-linux.org/) which does a very nice job
of 
hardening the system before installing Snort.

BTW, we have developed a PHP interface for configuring Snort rules and 
dpeloying them.   Is there any interest in this if we open source it?
-- 
*********************************
 Paul Gillingwater, BA, BSc, MBA
        Managing Director
 CSO Lanifex Unternehmensberatung
 & Softwareentwicklung G.m.b.H.
      NEW BUSINESS CONCEPTS

E-mail:  paul at ...9449...
Tel:     +43(1)2198222-20
Fax:     +43(1)2198222-11
Mobile:  +43(699)1922 3085
Webhome: http://www.lanifex.com/
Address: Praterstrasse 60/1/2
         A-1020 Vienna, Austria
*********************************


Quoting "Walzer, Jeff" <jeffwalzer at ...9442...>:

> Could someone please point me to any documentation that discusses how to
> lock down a RedHat box while running Snort? I want to strip every
> unnecessary service from RedHat before loading Snort.
>  
> Thanks,
> Jeff
> 



-------------------------------------------------------
This SF.NET email is sponsored by: eBay
Great deals on office technology -- on eBay now! Click here:
http://adfarm.mediaplex.com/ad/ck/711-11697-6916-5
_______________________________________________
Snort-users mailing list
Snort-users at lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

------_=_NextPart_001_01C3311A.2FDCB510
Content-Type: text/html; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; charset=3Diso-8859-=
1">
<META NAME=3D"Generator" CONTENT=3D"MS Exchange Server version 5.5.2653.12">
<TITLE>RE: [Snort-users] How to lock down a RedHat box running Snort?</TITL=
E>
</HEAD>
<BODY>

<P><FONT SIZE=3D2>From the number of posts on this list about managing rule=
s, I'd say there</FONT>
<BR><FONT SIZE=3D2>is a great deal of interest in this, particularly if it =
were open sourced.</FONT>
</P>

<P><FONT SIZE=3D2>/benjamin</FONT>
</P>

<P><FONT SIZE=3D2>-----Original Message-----</FONT>
<BR><FONT SIZE=3D2>From: Paul Gillingwater [<A HREF=3D"mailto:paul at ...9452...=
..">mailto:paul at ...9449...</A>]</FONT>
<BR><FONT SIZE=3D2>Sent: Thursday, June 12, 2003 12:10 PM</FONT>
<BR><FONT SIZE=3D2>To: Walzer, Jeff</FONT>
<BR><FONT SIZE=3D2>Cc: snort-users at lists.sourceforge.net</FONT>
<BR><FONT SIZE=3D2>Subject: Re: [Snort-users] How to lock down a RedHat box=
 running Snort?</FONT>
</P>
<BR>

<P><FONT SIZE=3D2>We use Bastille (<A HREF=3D"http://www.bastille-linux.org=
/" TARGET=3D"_blank">http://www.bastille-linux.org/</A>) which does a very =
nice job of </FONT>
<BR><FONT SIZE=3D2>hardening the system before installing Snort.</FONT>
</P>

<P><FONT SIZE=3D2>BTW, we have developed a PHP interface for configuring Sn=
ort rules and </FONT>
<BR><FONT SIZE=3D2>dpeloying them.   Is there any interest in thi=
s if we open source it?</FONT>
<BR><FONT SIZE=3D2>-- </FONT>
<BR><FONT SIZE=3D2>*********************************</FONT>
<BR><FONT SIZE=3D2> Paul Gillingwater, BA, BSc, MBA</FONT>
<BR><FONT SIZE=3D2>        Managing Dire=
ctor</FONT>
<BR><FONT SIZE=3D2> CSO Lanifex Unternehmensberatung</FONT>
<BR><FONT SIZE=3D2> & Softwareentwicklung G.m.b.H.</FONT>
<BR><FONT SIZE=3D2>      NEW BUSINESS CONCEPTS</FO=
NT>
</P>

<P><FONT SIZE=3D2>E-mail:  paul at ...9449...</FONT>
<BR><FONT SIZE=3D2>Tel:     +43(1)2198222-20</FONT>
<BR><FONT SIZE=3D2>Fax:     +43(1)2198222-11</FONT>
<BR><FONT SIZE=3D2>Mobile:  +43(699)1922 3085</FONT>
<BR><FONT SIZE=3D2>Webhome: <A HREF=3D"http://www.lanifex.com/" TARGET=3D"_=
blank">http://www.lanifex.com/</A></FONT>
<BR><FONT SIZE=3D2>Address: Praterstrasse 60/1/2</FONT>
<BR><FONT SIZE=3D2>         A-1020 =
Vienna, Austria</FONT>
<BR><FONT SIZE=3D2>*********************************</FONT>
</P>
<BR>

<P><FONT SIZE=3D2>Quoting "Walzer, Jeff" <jeffwalzer at ...9453...=
.>:</FONT>
</P>

<P><FONT SIZE=3D2>> Could someone please point me to any documentation t=
hat discusses how to</FONT>
<BR><FONT SIZE=3D2>> lock down a RedHat box while running Snort? I want =
to strip every</FONT>
<BR><FONT SIZE=3D2>> unnecessary service from RedHat before loading Snor=
t.</FONT>
<BR><FONT SIZE=3D2>>  </FONT>
<BR><FONT SIZE=3D2>> Thanks,</FONT>
<BR><FONT SIZE=3D2>> Jeff</FONT>
<BR><FONT SIZE=3D2>> </FONT>
</P>
<BR>
<BR>

<P><FONT SIZE=3D2>-------------------------------------------------------</=
FONT>
<BR><FONT SIZE=3D2>This SF.NET email is sponsored by: eBay</FONT>
<BR><FONT SIZE=3D2>Great deals on office technology -- on eBay now! Click h=
ere:</FONT>
<BR><FONT SIZE=3D2><A HREF=3D"http://adfarm.mediaplex.com/ad/ck/711-11697-6=
916-5" TARGET=3D"_blank">http://adfarm.mediaplex.com/ad/ck/711-11697-6916-5=
</A></FONT>
<BR><FONT SIZE=3D2>_______________________________________________</FONT>
<BR><FONT SIZE=3D2>Snort-users mailing list</FONT>
<BR><FONT SIZE=3D2>Snort-users at lists.sourceforge.net</FONT>
<BR><FONT SIZE=3D2>Go to this URL to change user options or unsubscribe:</F=
ONT>
<BR><FONT SIZE=3D2><A HREF=3D"https://lists.sourceforge.net/lists/listinfo/=
snort-users" TARGET=3D"_blank">https://lists.sourceforge.net/lists/listinfo=
/snort-users</A></FONT>
<BR><FONT SIZE=3D2>Snort-users list archive:</FONT>
<BR><FONT SIZE=3D2><A HREF=3D"http://www.geocrawler.com/redir-sf.php3?list=
=3Dsnort-users" TARGET=3D"_blank">http://www.geocrawler.com/redir-sf.php3?l=
ist=3Dsnort-users</A></FONT>
</P>

</BODY>
</HTML>=

------_=_NextPart_001_01C3311A.2FDCB510--




More information about the Snort-users mailing list