| 1 |
(Sorry about the cross-post, but I figured that both groups would be |
| 2 |
interested in this) |
| 3 |
|
| 4 |
Tomorrow (well, about 10 hours or so) I'll start dealing with my backlog |
| 5 |
(most of the prelude components needs to be version bumped etc). Anyway, |
| 6 |
solar or method (memory fails me here) asked me to write up some |
| 7 |
documentation about IDS, and I'd like to know what "black magic" you |
| 8 |
guys see in the IDS world that you would like to have explained (looking |
| 9 |
mainly at the network IDS for now). |
| 10 |
|
| 11 |
I am more incline to write some good book reviews and some |
| 12 |
tips-and-tricks then to write about something from scratch, as there are |
| 13 |
already very good books on the subject. |
| 14 |
|
| 15 |
The documentation and/or tips and tricks will be kept as generic as |
| 16 |
possible as I really don't want to write software specific stuff where |
| 17 |
possible (I have both Prelude and Snort under my wings at the moment), |
| 18 |
and where it is not possible to be generic I will clearly state for what |
| 19 |
IDS software these specifics are for. |
| 20 |
|
| 21 |
This is also a call for ebuild testers. Please try out snort-2.0.5-r2 |
| 22 |
and let me know any bugs you find (through bugzilla) ASAP, as I am |
| 23 |
planning to make that version stable on x86 by Thursday (18 dec 2003). |
| 24 |
Please make sure you read the ChangeLog before you install it as several |
| 25 |
USE flags has been added and it may not be compiled the way you assumed |
| 26 |
(haven't removed any functionality, just made it more customisable). |
| 27 |
|
| 28 |
As usual I managed to write a small story for what should been a quick |
| 29 |
"what do you want documented?" and "heads up" mail.. |
| 30 |
|
| 31 |
-- |
| 32 |
Michael Boman |
| 33 |
Developer, Hardened Gentoo Linux |
| 34 |
http://www.gentoo.org http://dev.gentoo.org/~mboman |
Archives