More information on Snort can be
found at http://www.snort.org.
. PortSentry??”Like Snort, PortSentry acts as an intrusion-detection system by looking
for suspicious activity. It differs from Snort in that it tries to find this activity by
focusing on attempts aimed at the local computer and not on the network as a
whole. It also offers the capability to block ports, and thus functions as a firewall as
well. More information on PortSentry can be found at
http://sourceforge.net/projects/sentrytools.
NOTE
Although it has been implied, it is important to note that any network is only as strong
as the weakest element on it. To have a secure network, it is important to keep all
workstations secure.
What to Do if You??™ve Been Hacked
Humor books aside, it is never fun trying to come up with worst-case scenarios, and it??™s
even less fun trying to figure out how to survive them. Thinking about the day someone
breaks into your carefully protected, what-seemed-secure network and compromises your
system is harder still. Yet thinking about it ahead of time can ease the stress of that day
and can also put that day further into the future.
Pages:
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952