[ Thanks to js61351 for this link.
]
“Stocking a Linux security toolbox? Don’t forget Snort, says
Rafeeq Ur Rehman, author of Intrusion Detection with Snort from
Prentice Hall PTR. Snort’s stability and cross-platform
compatibility makes it Rehman’s enterprise open-source
intrusion-detection system of choice. In this interview, he
discusses the common mistakes people make when using Snort and
addresses the tools everyone should have in their security
toolboxes. Rehman also talks about the benefits of honeypots to
Linux users.“To start, what general tools should an IT shop have in its
Linux security toolbox?“Rafeeq Ur Rehman: There are many tools
available in open-source. Depending upon what applications and
servers are running in an IT shop, a different set of tools is
needed. However there are some common tools that are used by
everyone in the security area…”