Monthly Archives: September 2008

Just a quick blog today , assuming you have installed snort from source, how do you update it ? Turns out it is quite simple. First download the new version of snort to /usr/src Then remove the old version : … Continue reading →

This is a *brief* how to compile snort on Centos 5.2 x86_64 (64 bit). First install dependencies (some of these dependencies are for base) yum -y install mysql mysql-devel mysql-bench mysql-server mysql-devel php-mysql httpd gcc gcc-c++ pcre-devel php-gd gd libpcap-devel … Continue reading →

This tutorial will show you how to install a snort sensor on Ubuntu and use ssh to log the alerts to a central server. This assumes you have a central server with snort, mysql, apache, ssh-server, and already installed. If … Continue reading →

Running snort as a non-root user is easy, although I did not easily find documentation. First, create a user to run snort. In this example I will use “snort”, change the name if you wish. adduser snort chsh snort enter … Continue reading →

I am taking EnGarde Linux for a test spin, so far I am on a steep leaning curve. Home Page : Engarde Linux A majority of the administration is performed at the web interface, AK “Guardian Digital WebTool”, and the … Continue reading →