Wednesday, August 9, 2006 4:54:19 PM
To setup an IDS ( Intruder Detection System ) such as snort is not difficult, the snort website have a very good setup guideline. http://snort.org/docs/#setup
It contains setup guidelines for few OS/distribusions , ie. freebsd, redhat / ferdora / centos , debian sun solaris etc. By following step by step, you would be able to get snort up with web interface call BASE (Basic Analysis and Security Engine).
I was following the one for fedora and centos, and successfully installed. That pdf covers from the beginning what to includes when linux installation, what dependencies to solved, changes of iptables, uses SSL(https). The installation is quite long, but by following precisely, you would be able to get the simple IDS box done.
Sunday, August 6, 2006 4:18:02 AM
The most important step to do after finish installing your OS is to setting up network so that you will be able to connect to the internet. I discover that, setting up network for different kind of distribution is not the same, you need to know what configuration files to edit.
Red Hat Distro ( fedora, centos )
Debian Distro ( Ubuntu, etc )
iface eth0 inet static # dhcp
dns-nameservers 22.214.171.124 126.96.36.199
# the interface name is variable, assume the interface name is lnc0
ifconfig_lnc0="inet 192.168.1.2 netmask 255.255.255.0"
If you specified DCHP, IP address and netmask can be ignore
Edit /etc/resolv.conf as well to put the DNS if static IP is specified
Again, network script can be more complex, but with these settings it is enough to access internet.