Date: Tue, 25 Mar 2003 13:23:23 -0500 (EST) From: "Nigel Houghton <nigel.houghton@sourcefire.com>" <nigel@sourcefire.com> To: GiZmen <gizmen@pals.one.pl> Cc: "freebsd-security@FreeBSD.ORG" <freebsd-security@FreeBSD.ORG> Subject: Re: portsentry vs snort Message-ID: <Pine.LNX.4.53.0303251316230.388@enterprise.sfeng.sourcefire.com> In-Reply-To: <20030325180901.GA3420@blurp.one.pl> References: <20030325180901.GA3420@blurp.one.pl>
next in thread | previous in thread | raw e-mail | index | archive | help
Apples and oranges :) In brief: Portsentry listens for connections on various ports and can respond to portscanning attempts. Snort is a lightweight IDS that you can use to detect miscreant behaviour directed at your network. Both will generate logs for your perusal. ------------------------------------------------------------- Nigel Houghton Security Engineer Sourcefire Inc. I believe you said: :Hi everyone, : :Can anybody write something about these two IDS. :I dont know which one is better for freebsd 5.0 :Im red something about these programs and i dont know which to chose on by :freebsd box. :I heard that snort is recommendet software for FBSD is that true ? : :Thanks for any sugestions. : :-- :Best Regards: : GiZmen : :To Unsubscribe: send mail to majordomo@FreeBSD.org :with "unsubscribe freebsd-security" in the body of the message : To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.4.53.0303251316230.388>