Email This Post Email This Post ........................................................... 256 views

Reading time: 1 – 2 minutes

This is the 1th part of a number of how tos that I just decide to type in my blog:

How To IDS ( Intrusion Detection System ) using Mandriva 2008.1 Part One

First we will need some packages as IpTables and Psad to build the first part of our IDS that eventually will give as total power to defend us versus atakers.
1- As r00t we do:
[root@hestia ~]# urpmi iptables
[root@hestia ~]# urpmi psad
To satisfy dependencies, the following packages are going to be installed:
Package Version Release Arch
(medium "main")
perl-Bit-Vector 6.4 5mdv2008.1 x86_64
perl-Carp-Clan 6.00 1mdv2008.1 noarch
perl-Date-Calc 5.5.1 8mdv2008.1 x86_64
perl-IPTables-ChainMgr 2.1.1 1mdv2008.1 x86_64
perl-IPTables-Parse 2.1.1 1mdv2008.1 x86_64
perl-Net-IPv4Addr 0.10 10mdv2008.1 noarch
perl-Unix-Syslog 1.0 2mdv2008.1 x86_64
psad 2.1.1 1mdv2008.1 x86_64
3.5MB of additional disk space will be used.
847KB of packages will be retrieved.
Proceed with the installation of the 8 packages? (Y/n) Y
.. Adding psadfifo line to /etc/syslog.conf
.. Restarting syslogd
.. You can edit the EMAIL_ADDRESSES variable in
/etc/psad/psad.conf to have email alerts sent to
an address other than root@localhost

Configuring IpTables:
Leer el resto de la entrada

, , , ,

· coogee theme
· 2009-2010 un blog de Adrián Navarro
· Contenido publicado bajo la licencia Creative Commons 3.0 (Reconocimiento)
· Este sitio funciona gracias a Wordpress y Aleux México
IBSN: Internet Blog Serial Number 010-101-010-9