Skip site navigation (1)Skip section navigation (2)
Date:      Fri, 17 Aug 2001 15:32:58 -0400 (EDT)
From:      Joe Clarke <marcus@marcuscom.com>
To:        Dave <dave@reason.za.org>
Cc:        <freebsd-security@FreeBSD.ORG>, <freebsd-questions@FreeBSD.ORG>
Subject:   Re: IDS
Message-ID:  <20010817153110.U59726-100000@shumai.marcuscom.com>
In-Reply-To: <001f01c1274e$cdc8b620$3400a8c0@mandy>

next in thread | previous in thread | raw e-mail | index | archive | help
You can certainly get hogwash to compile on FreeBSD.  I just did it.  Let
me know if you have questions on the build.

Joe Clarke

On Fri, 17 Aug 2001, Dave wrote:

> Hello,
>     I have been using snort for some time now and I stumbled across a
> program named Hogwash (http://hogwash.sourceforge.org) which uses the snort
> base to detect possible intrusion, but then DROPS the packet if it matches a
> ruleset. E.g. Code red can just be dropped instead of blocking port 80.
>
> This seems like a very good idea to me however hogwash is a linux program.
> Can anyone perhaps recommend another program and/or method to do this.
>
> Thanks in advance,
> --Dave.
>
>
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message
>
>


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010817153110.U59726-100000>