Security Dashboard
ARTICLE Snort 2.7.0 RC2 released
Sunday 1 July 2007 - 1542 read - ( Keywords : Data Sniffer , IDS , Snort )
Snort is a lightweight network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Snort uses a flexible rules language to describe traffic that it should collect or pass, as well as a detection engine that utilizes a modular plugin architecture. Snort has a real-time alerting capability as well, incorporating alerting mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages to Windows clients using Samba’s smbclient.
POSTSCRIPTUM
COMPLIANCE MANDATES
IDS : PCI DSS 10.6, 11.4, SOX A13.2, DS5.10, GLBA 16CFR Part 314.4(b) and (3), HIPAA 164.306(a)(2), 164.308(a)(1) 164.308(a)(6)42, FISMA SI-4, AC-2, ISO 27001/27002 10.6.2,
10.10.1, 10.10.2, 10.10.4, 15.1.5RELATED ARTICLES
Data Sniffer,
IDS,
Snort,
19 June 2008 : Snort 2.8.2.1 released28 September 2007 : Snort 2.8.0 released2 September 2007 : Snort 2.8 Beta is out1 July 2007 : Snort 2.7.0 RC2 released24 June 2007 : Snort 2.7.0 RC1 released
