Snort for Dummies
Snort for Dummies, by Charlie Scott, Paul Wolfe, and Bert Hayes, teaches basic intrusion detection skills through the Snort platform. Snort is an open source intrustion detection system for computer networks. It’s a free piece of software which resides on a computer and watches all of the network traffic passing through that machine. Unusual or dangerous traffic is flagged and recorded to alert the network administrator. Basically, Snort is a sentry for your network, on the lookout for hacking, viruses, and anything else you write a rule for.
Quite frankly, the book sucks. You’ll get at least as much from the Snort users manual, which is a free 90 page introduction to Snort. It’s 1/3 as long as Snort for Dummies, and fits in more content with less cruft. The first three chapters of Snort for Dummies introduce the software and its requirements. Why not read Snort - Lightweight Intrusion Detection for Networks and the Snort FAQ? Chapters 4 and 5 cover installation for Windows and Linux–but so does Snort’s Windows and Linux guides. The remaining chapters cover basic snort usage and configuration, and by basic, I mean basic. There’s nothing in there not in the manual, and explanation is not needed–how they manage to stretch out the material for four hundred pages, I do not know.
So, Snort for Dummies gets the lowest rating I can give: :1star:. Really–just read the manual.
This entry was posted on Friday, January 7th, 2005 at 9:15 pm and is tagged with charlie scott, intrusion detection, paul wolfe, page introduction, network traffic, users manual, network administrator, dummies, computer networks, sentry, bert, lookout, viruses, open source, linux, scott paul. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback.