Snort mailing list archives
Getting more paranoid by the minute. :-/
From: "Shaun T. Erickson" <ste () smxy org>
Date: Sat, 24 Apr 2004 21:35:30 -0400
As I mentioned in an earlier post, I've been hired to set up several snort servers for a client. It's important that I do it right, or their customer's sensitive data will be compromised.
The more I read Syngress Snort 2.0 book (I'm in chapter 5), the more I understand that there are an endless number of attacks out there. I'm concerned that my lack of knowledge will let an attacker at the data. I can't let that happen.
How can I possibly learn enough, quickly enough, to write all the rules to protect my client, when I don't even know all the attacks and exploits that are out there?
I understand that snort comes with a standard set of rules, that I can update off the net, to stay current. Is this standard set of rules going to be enough to protect my client, initially, as I continue to learn snort?
I'm trying to absorb as much as I can, as fast as I can, but they need this installed NOW, and I'm just concerned that my ignorance, as I come up to speed, not cost them everything.
Advice? Suggestions? Valium? Please. -ste ------------------------------------------------------- This SF.net email is sponsored by: The Robotic Monkeys at ThinkGeek For a limited time only, get FREE Ground shipping on all orders of $35 or more. Hurry up and shop folks, this offer expires April 30th! http://www.thinkgeek.com/freeshipping/?cpg=12297 _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Getting more paranoid by the minute. :-/ Shaun T. Erickson (Apr 24)
- Re: Getting more paranoid by the minute. :-/ Paul Schmehl (Apr 24)
- Re: Getting more paranoid by the minute. :-/ Chris Burton (Apr 24)
- Re: Getting more paranoid by the minute. :-/ Shaun T. Erickson (Apr 24)
- Re: Getting more paranoid by the minute. :-/ Shaun T. Erickson (Apr 24)
- Re: Getting more paranoid by the minute. :-/ Shaun T. Erickson (Apr 24)
- Re: Getting more paranoid by the minute. :-/ Demetri Mouratis (Apr 24)
- Re: Getting more paranoid by the minute. :-/ Shaun T. Erickson (Apr 24)
- Re: Getting more paranoid by the minute. :-/ Alejandro Flores (Apr 25)
- Re: Getting more paranoid by the minute. :-/ Chris Burton (Apr 24)
- Re: Getting more paranoid by the minute. :-/ Paul Schmehl (Apr 24)
- RE: Getting more paranoid by the minute. :-/ Jim Hendrick (Apr 25)
- Re: Getting more paranoid by the minute. :-/ AJ Butcher, Information Systems and Computing (Apr 26)