Skip to main content

SNARE: Host-Based Linux Intrusion Detection

posted onDecember 12, 2001
by hitbsecnews

Source: 8Wire.com

Perhaps one reason that Linux hasn't become more prominent in the corporate world has been its lack of sophisticated host-based intrusion detection systems (IDSs). There are many Linux IDSs in use that are network-based, meaning that they attempt to detect intrusions before they occur. Now, there is at least one host-based Linux IDS, called SNARE (System iNtrusion Analysis and Reporting Environment).

Host-based IDSs use auditing and event logging on individual computers to detect intrusions after they have occurred. Despite the apparent contradiction, it is more effective to control a security breach with a host-based system than to prevent a security breach with a network-based system. Most Unix and other mainframe shops use host-based security systems on their various network and file servers.

Source

Tags

Red Hat

You May Also Like

Recent News

Tuesday, November 19th

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th