Date: Thu, 3 May 2001 10:19:13 -0700 From: Jason DiCioccio <Jason.DiCioccio@Epylon.com> To: 'Glenn G' <glenn@geekazoid.com>, security@FreeBSD.org Subject: RE: Security Monitors Message-ID: <657B20E93E93D4118F9700D0B73CE3EA0166D821@goofy.epylon.lan>
next in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Oops.. regarding my previous email.. I actually DON'T use mon for security.. I use it as a NOC to see when stuff is down, etc. I use a NIDS as well for security monitoring.. I actually use NFR (Network Flight Recorder) which is a commercial NIDS, which I am very happy with. It is basically a copy of OpenBSD on a bootable CD-ROM (the filesystem is read-only in this case).. So it is very hard to tamper with the data.. Not to mention it leaves basically no services open :).. Cheers, - -JD- - -----Original Message----- From: Glenn G [mailto:glenn@geekazoid.com] Sent: Thursday, May 03, 2001 9:18 AM To: security@FreeBSD.org Subject: Security Monitors Good Morning All! I have a quick question regarding security monitoring. We have a Linux server that was recently breeched (completely my fault btw. Never got around to securing it up very well.) To my point...FreeBSD has been much more secure in my limited experience than most other OS's out there. I would however like to install more monitoring software on the box so it will alert me if there has been an attack. I have been looking at "mon", "bro", and "logcheck". Can anyone give any recommendations? Experiences? Also, is it worthwhile to install "xinetd"? Again, any advice would be awesome. Any help is greatly appreciated!!! ;-) Happy Day, glenn PS - I am on the digest list so please be patient for any feedback from me. :-) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>; iQA/AwUBOvGTuFCmU62pemyaEQL29gCglGRPRgo13f9AK4rJ4nbFMdFkBnIAoK9b t/5q2wZBxAjToY58lgfyoG/q =thPs -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?657B20E93E93D4118F9700D0B73CE3EA0166D821>