Summary
The primary purpose of the console is to provide an isolated environment for you to perform intrusion detection duties and maintain the Snort components. If you or your organization can afford it, it is best to keep the analyst's console separate from all other applications and connected to just the monitoring segment. The two necessary components for the console are a Web browser and an SSH client. The console can use either a Linux or Microsoft OS. The ideal setup is a dual boot machine that has both OSs on separate partitions. The primary reason to have a Windows partition on the analyst's console is to make use of IDS Policy Manager.
After the console is installed, a real upgrading example is used to test the console. A layer of security ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access