Security Basics mailing list archives
RE: Info HIDS
From: "Arun Vishwanathan" <arun.vishwanathan () nevisnetworks com>
Date: Fri, 9 Jul 2004 09:51:11 +0530
A HIDS has to be installed on the host that it is supposed to protect. If you want to protect the Webserver without installing the IDS on the server then you have to look for a NIDS i.e. a Network Intrusion Detection system. NIDS will sit typically on your gateway and monitor all the traffic that passes the gateway. Try looking at Snort (www.snort.org) though Snort is not a web server specific Intrusion system. HTH Regards, Arun -----Original Message----- From: Carlos H [mailto:carloshp () cantv net] Sent: Thursday, July 08, 2004 4:52 PM To: security-basics () securityfocus com Subject: Info HIDS Hello list, recently I have been deployment a DMZ. I'm trying to install and configure an HIDS (tripwire) to get intrusion's information about a Web Server (WebServer1). Looking on Tripwire's manual i found that is necesary (i`m not really sure!!!) that Tripwire run on the same machime to be monitored. I mind, Tripwire must be installed on WebServer1. That is not good for me! The question is: Exist another way to configure Tripwire (or other HIDS) looking for detecting a remote host? Is possible to install Tripwire in a diferent host to WebServer1? Carlos H. ------------------------------------------------------------------------ --- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ------------------------------------------------------------------------ ---- --------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ----------------------------------------------------------------------------
Current thread:
- RE: Info HIDS Arun Vishwanathan (Jul 09)
- Re: Info HIDS captgoodnight (Jul 12)