HP3000-L Archives

March 2004, Week 3

HP3000-L@RAVEN.UTC.EDU
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Re: Intrusion Detection for MPE
From:
Jeff Kell <[log in to unmask]>
Reply To:
Jeff Kell <[log in to unmask]>
Date:
Wed, 17 Mar 2004 22:42:33 -0500
Content-Type:
text/plain
Parts/Attachments:
text/plain (17 lines) 
Greg Stigers wrote:

> What are list members doing to attempt to track intrusion detection on their
> HP 3000s?

I'm running Snort on a Linux box that catches a lot of nonsense, but
have not yet developed any HP-3000 specific signatures yet, but it could
certainly be doable (any other Snort users out there care to collaborate?).

We are rather specific about router-based ACLs and /usr/adm/inetd.sec
about who even gets a shot.

Jeff

* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *

ATOM RSS1 RSS2