Updates
Latest Tweet
What's New?
Check out for latest innovation, a computer based training video collection
Like this Page
Snort for Dummies Review by W Boudville
run Snort on a linux machine
One would think sysadmins would not need a Dummies book on network protection. But apparently, some do appreciate a quick course, like that given here. It shows how Snort is available for all the main operating systems. Though the authors point out manifold advantages of running it under linux.
As in being able to reduce linux down to a minimal core system. This may be a significant consideration even if most of your machines are running Microsoft operating systems. Since your Snort machine needs to be as secure as possible. So throwing out optional linux packages reduces the risk of a serious bug in these compromising the machine. Plus, because you never know when your net might be attacked, Snort should run with as much uptime as possible. Routinely, linux boxes are capable of extended uptime. While in principle this is also true of Microsoft machines, in practice they tend to get rebooted far more often.
The book goes further into the actual usages of Snort. But you may want to consider the above as one of the best suggestions in the book.