Intrusion Detection with Snort
暫譯: 使用 Snort 的入侵偵測
Jack Koziol
- 出版商: SAMS
- 出版日期: 2003-05-20
- 定價: $1,750
- 售價: 6.0 折 $1,050
- 語言: 英文
- 頁數: 360
- 裝訂: Paperback
- ISBN: 157870281X
- ISBN-13: 9781578702817
立即出貨(限量) (庫存=1)
買這商品的人也買了...
-
$1,200$1,176 -
$580$458 -
$680$537 -
$980$774 -
$2,440$2,318 -
$920$727 -
$860$568 -
$1,600$1,568 -
$120$95 -
$420$328 -
$580$458 -
$650$553 -
$760$600 -
$580$458 -
$590$466 -
$1,730$1,644 -
$620$527 -
$680$537 -
$690$538 -
$420$332 -
$720$562 -
$720$569 -
$290$247 -
$750$638 -
$560$476
相關主題
商品描述
With over 100,000 installations, the Snort open-source network instrusion detection system is combined with other free tools to deliver IDS defense to medium - to small-sized companies, changing the tradition of intrusion detection being affordable only for large companies with large budgets.
Until now, Snort users had to rely on the official guide available on snort.org. That guide is aimed at relatively experience snort administrators and covers thousands of rules and known exploits.
The lack of usable information made using Snort a frustrating experience. The average Snort user needs to learn how to actually get their systems up-and-running.
Snort Intrusion Detection provides readers with practical guidance on how to put Snort to work. Opening with a primer to intrusion detection and Snort, the book takes the reader through planning an installation to building the server and sensor, tuning the system, implementing the system and analyzing traffic, writing rules, upgrading the system, and extending Snort.
Table of Contents
1. Intrusion Detection Primer.
2. Network Intrusion
Detection with Snort.
3. Dissecting Snort.
4. Planning for the Snort
Installation.
5. The Foundation-Hardware and Operating Systems.
6.
Building the Server.
7. Building the Sensor.
8. Building the Analyst's
Console.
9. Additional Installation Methods.
10. Tuning and Reducing
False Positives.
11. Real-Time Alerting.
12. Basic Rule Writing.
13.
Upgrading and Maintaining Snort.
14. Advanced Topics in Intrusion
Prevention.
Appendix A. Troubleshooting.
Appendix B. Rule Documentation.
Index.
商品描述(中文翻譯)
隨著超過 100,000 次的安裝,Snort 開源網路入侵偵測系統結合其他免費工具,為中小型企業提供 IDS 防護,改變了入侵偵測僅限於大型企業和大預算的傳統。
直到現在,Snort 使用者必須依賴 snort.org 上的官方指南。該指南針對相對有經驗的 Snort 管理員,涵蓋了數千條規則和已知的漏洞。
缺乏可用的信息使得使用 Snort 成為一種令人沮喪的體驗。一般的 Snort 使用者需要學習如何實際啟動和運行他們的系統。
《Snort 入侵偵測》為讀者提供了如何有效使用 Snort 的實用指導。本書以入侵偵測和 Snort 的簡介開篇,帶領讀者從安裝計劃到構建伺服器和感測器,調整系統、實施系統和分析流量、編寫規則、升級系統以及擴展 Snort。
目錄
1. 入侵偵測簡介。
2. 使用 Snort 進行網路入侵偵測。
3. 剖析 Snort。
4. Snort 安裝計劃。
5. 基礎設施 - 硬體和作業系統。
6. 構建伺服器。
7. 構建感測器。
8. 構建分析控制台。
9. 其他安裝方法。
10. 調整和減少誤報。
11. 實時警報。
12. 基本規則編寫。
13. 升級和維護 Snort。
14. 入侵防護的進階主題。
附錄 A. 故障排除。
附錄 B. 規則文檔。
索引。