Greg Stigers wrote:
> What are list members doing to attempt to track intrusion detection on their
> HP 3000s?
I'm running Snort on a Linux box that catches a lot of nonsense, but
have not yet developed any HP-3000 specific signatures yet, but it could
certainly be doable (any other Snort users out there care to collaborate?).
We are rather specific about router-based ACLs and /usr/adm/inetd.sec
about who even gets a shot.
Jeff
* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *