With over 100,000 installations, the Snort open-source network instrusion detection system is combined with other free tools to deliver IDS defense to medium - to small-sized companies, changing the tradition of intrusion detection being affordable only for large companies with large budgets.
Until now, Snort users had to rely on the official guide available on snort.org. That guide is aimed at relatively experience snort administrators and covers thousands of rules and known exploits.
The lack of usable information made using Snort a frustrating experience. The average Snort user needs to learn how to actually get their systems up-and-running.
Snort Intrusion Detection provides readers with practical guidance on how to put Snort to work. Opening with a primer to intrusion detection and Snort, the book takes the reader through planning an installation to building the server and sensor, tuning the system, implementing the system and analyzing traffic, writing rules, upgrading the system, and extending Snort.
Jack Koziol is the Information Security Officer at a major Chicago-area financial institution, responsible for security enterprise-wide. Previously, he has held information security positions at an online health care company and a point-of-care Internet-based pharmacy. Jack has written for Information Security magazine, and released several whitepapers on intrusion detection. He teaches the CISSP and "Hack and Defend" courses.
Jack has architected, maintained, and managed Snort and other IDS technologies in large production environments since 1998. He has also written Snort signature sets designed for specific applications.
The solid ratings and reviews for this book are appropriate. It is well written, informative, and moves at a nice clip. Read morePublished on May 7 2004
I teach networking and security courses at a local unversity, and I have been using this book for a portion of the courseware this semester. Read morePublished on Oct. 9 2003 by Dan Kegel
A comprehensive tutorial on Snort, the open source IDS. I especially like the author's casual, informal, tone, it feels like he is talking with you. Read morePublished on Oct. 5 2003 by Jeff Asherton
I agree with one of the other reviewers, Chapter 6 has more type o's than a blood bank. I am struggling currently (for the past 3 days) trying to install MySQL from source like it... Read morePublished on Oct. 2 2003 by Brian Gibson
Ive worked with Snort now off and on for over a year. I had pieced together and printed out most of the online freebies into a big 3 ring binder. Read morePublished on Sept. 10 2003 by sara harris
Welcome to the cryptic world of Snort. The author tires to explain how one should go about installing this software and getting your system up and running, but chapter 6 is full... Read morePublished on Sept. 9 2003 by C. F Higgins
Book covers intermediate and advanced Snort usage. Excellent topics, easy to understand.Published on Aug. 15 2003 by Joe McDunnel
Highly recommended. Everything possible about using/configuring/updating snort, plus all of the other tools that work with snort.Published on Aug. 8 2003 by Leo Cohen