On Wednesday 16 April 2003 02:15 am, Mark Courtney wrote: > Is there any way to detect if ports are being probed/sniffed? I've seen > programs like Snort, etc. Does anyone have any opionions about intrusion > detection systems? Yes. Snort + ACID, tripwire, swatch, logwatcher, iptables, a big lart. > Are they effective? They are a good part of your toolkit. > Are there other ways to manually detect intrusion? Umm, sure, busted window, broken lock. :-P Unless they intruder does something to catch your attention, you'll never know. -- Bob Tanner <tanner at real-time.com> | Phone : (952)943-8700 http://www.mn-linux.org, Minnesota, Linux | Fax : (952)943-8500 http://www.linuxjustworks.com | Linux Just Works! Key fingerprint = AB15 0BDF BCDE 4369 5B42 1973 7CF1 A709 2CC1 B288 _______________________________________________ TCLUG Mailing List - Minneapolis/St. Paul, Minnesota http://www.mn-linux.org tclug-list at mn-linux.org https://mailman.real-time.com/mailman/listinfo/tclug-list