has anybody heard about snort? where i can get a copy of this software and the guide lines?

Check here: http://www.snort.org/

Snort works great once you get it set up ;)

has anybody heard about snort? where i can get a copy of this software and the guide lines?

http://dag.wieers.com/packages/snort/

You can take this package directly from this link above, or adding dag repo and taking new versions with yum:

#vi /etc/yum.repos.d/dag.repo

[dag]
name=Dag
baseurl=http://apt.sw.be/fedora/$releasever/en/$basearch/dag/
enabled=1
gpgcheck=1

#rpm --import http://dag.wieers.com/packages/RPM-GPG-KEY.dag.txt
#yum install snort

Snort is a intrusion detection system, you can use to discover if your system have security holes.

If your yum is configured than open terminal and become root:yum install snort

Snort is pretty nice once you get it set up properly, check out this http://www.snort.org/docs/snort_manual.pdf

i've download the newest version of snort how im gonna setup into my system?

i've installed it through yum and i type top in command line and found it running in the list but i cant communicate with it like typing a command and get some result. can somebuddy teach me to use it like a pro?

Recommend using this installation method-

Snort, Apache, SSL, PHP, MySQL, ACID on Fedora Core 2 Installation Guide (http://www.snort.org/docs/Snort_SSL_FC2.pdf)


I seem to remember a slight problem with the guide when I installed it. I uninstalled the rpm, and installed snort via tar. Otherwise I followed this setup guide pretty strictly. You can skip the first few sections...they pertain to installing Fedora Core 2.

Anyhow, I could be mistaken about the guide being a bit off, and may have used a guide for RH 9, and the guide how now been updated to Fedora, and supports an RPM install of snort.

If you have problems, shoot me a private message...more than happy to help.

BTW- when I installed via tar, I copied the snort.conf file, then installed via yum. I then copied the snort.conf file back on top of the rpm snort.conf file. Now I have auto updates of snort.

ACID is great- it gives you a web based util to view intrusions, and really makes it more simple to look at. I recommend ACID, it just makes things look better...and truely somewhat psychidelic (not really, but it sounded cool).