Snort-2.1 Book Published
25 June, 2004
Syngress Publishing has published the book
Snort 2.1 Intrusion Detection, Second Edition, and I contributed
"Chapter 12; Active Response". This chapter explores the concept and implications
of configuring IDS software to automatically respond to attacks in real time. A PDF version
of this chapter can be downloaded
here.
The book has received positive reviews (including one by Richard Bejtlich of
taosecurity.com) on
amazon.com.
Both psad and
fwsnort are discussed within this chapter.
