Saturday, June 30, 2012

Snort MySQL And Acid On FreeBSD 4 7 Release Setup


This document will help a user install FreeBS D 4.7 Release, Snort 1.9.0, MySQL 3.23.53, and ACID-0.9.6b21. It will also guide the user through the process of securing the machine and getting the snort sensor(s) to log to a central database over stunnel. The intention is to give users that are new to any of the software the opportunity to build an enterprise-class system based completely on free, open-source tools. Following the instructions in this document will get you the following:

 • Multiple FreeBSD boxes, one running the Windowmaker desktop. I chose Windowmaker because the intention of this tutorial is to create dedicated Snort machines. In other words Gnome and KDE are overkill for what we are doing here (and it looks nice). • Locked-down machines (C2 in 2002!). I tried to be responsible with the securing of these boxes, but this is not a definitive guide to securing FreeBSD; there are several links to those at the end.download here

Posted by celica at 5:23 PM
Labels: