Item description for Snort 2.0 Intrusion Detection by Brian Caswell...
Written by lead engineers of the Snort Development team, this will be the first book available on the most commonly used Open Source Intrusion Detection System. Readers will be given invaluable insight into the code base of Snort, and in depth tutorials of complex installation, configuration, and troubleshooting scenarios. Snort has three primary uses: as a straight packet sniffer, a packet logger, or as a full-blown network intrusion detection system. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes. Snort uses a flexible rules language to describe traffic that it should collect or pass, a detection engine that utilizes a modular plug-in architecture, and a real-time alerting capability. A CD containing the latest version of Snort as well as other Open Source security utilities will accompany the book
Promise Angels is dedicated to bringing you great books at great prices. Whether you read for entertainment, to learn, or for literacy - you will find what you want at promiseangels.com!
You'll learn how to use Snort as a straight packet sniffer, a packet logger (for network traffic debugging), and a full-blown network intrusion detection system. The book also provides instructions for running Snort on various hardware platforms and OS configurations.
A companion CD-ROM contains a fully functional copy of Snort 2.0, the Barnyard alert output utility, the browsing and analyzing tool Analysis Console for Intrusion Databases (ACID), the response automation tool Swatch, and other helpful tools.
If you want to tap into the power of Snort, make sure you have all the information you need to make the most of it. Let Snort 2.0 Intrusion Detection help you take your current computer security system up a notch with the most powerful open-source security tool available. - Raffiudeen Illahideen, IL, USA
Good for even the experienced Snort user Apr 10, 2004
I've been running Snort for since the earliest versions and spend a lot of time on the mail lists, working through problems with other users, etc. I got this book about 6 months ago, read it all the way through, and since then have been referring to it whenever I've had questions or problems with Snort. I was initially going to post a review after my initial reading, but wanted to see if I experienced any buyer's remorse after putting the book through it's paces a little bit more. Well, its' half a year later and I'm more impressed with it now than after my initial read. Every time I've had a question, I've found an answer in this book. I'm not quite sure what web site the reader from Maryland is visiting (it's certainly not the Snort site) where he found information anything like the Preproccesors chatper in this book. That chatper was obviously the result of some serious, independent research.
Not Worth The Money Apr 8, 2004
First of all, this book has way too many grammar mistakes. Secondly, go to the snort web site and download their PDF documents because they are free. I compared the snort documentation against this book and it is almost exactly the same. So they knew how to take snort's PDF and make it into a book. I will give them credit for that. I expected a lot more than what I had already read on snort's website.
There were a few errors on setting up ACID, but having read snort's documentation already, it was easily figured out. Too bad I can't get my money back because if I knew it was this bad, I would have never bought it.
Too many mistakes Oct 30, 2003
The technical content is ok, but I am extremely tired of reading books that contain so many grammatical mistakes that one gets irritated every time a page is turned. This publisher is notorious for this and emails I wrote to them were not answered. This is just not acceptable for an expensive book. Don't they have proofreaders?