ZDNet

Buffer overflow flaw socks Snort

The discovery and disclosure of a serious vulnerability in the Sendmail e-mail software by Atlanta based security giant Internet Security Systems (ISS) is starving another vulnerability of the ...
Ars Technica

ssh connection to kick off a snort log

alright kids. i've been fighting with this for a while. basically i want to log any and all IP address who connect via ssh. all i really want in this log is a msg header, timestamp, remote IP address ...
Ars Technica

Have I been Hacked? (Snort output included)

this showed up in my snort logs just a minute ago, have my system been compromised? <BR>"Feb 13 22:40:22 clarkconnect snort: [1:498:3] ATTACK RESPONSES id check returned root [Classification: ...
InfoWorld

Network detectives sniff for snoops

Just a few short years ago, an IDS was a luxury. Before the rise of the Web application and the worm, most networks were adequately defended by a firewall at the perimeter and a virus scanner at the ...