On the look for NIDS softwares
Hi there everybody.
Recently I just installed Snort (wich looks like being the best NIDS for Linux). But I had some problems with Snort, I think because of the structure of my server. Let me first introduce my LinuxBox...
I have a machine, Pentium I, 64 MB RAM, 2 GB HD.
On this machine I have some services running for a home environment, it has dhcp (dynamically assigning IP adresses to the computers at home), ftp service (just for the members of my familiy, 4 by the way) and squid. It is the firewall (iptables) and router of my adsl network at home too and everything is working very smoothly.
The problem is that when I ran configured and ran Snort, it keeps killing other processes on the initalization steps (it killed squid, xfs (I think it's that) and sendmail)...
I don't why this happens but at the end of the Snort initialization it terminates and stops working. And I didn't find any problem regarding configuration. I think it happens because of hardware limitations so I would like to know if there are lighter Intrusion Detection System softwares that I can use on this machine.
Thanks a lot.
|