What is Snort?
- What is Snort?
- History
- About the Author
What is Snort?
According to the README file,
Snort is a libpcap-based packet sniffer/logger which can be used as a
lightweight network intrusion detection system. It features rules based logging
and can perform content searching/matching in addition to being used to detect
a variety of other attacks and probes, such as buffer overflows, stealth port
scans, CGI attacks, SMB probes, and much more. Snort has a real-time alerting
capabilty, with alerts being sent to syslog, a seperate "alert" file, or even
to a Windows computer via Samba.
History
Hey Marty, what goes here?
2000.03.2? - Snort 1.6 is released.
About the Author
Marty Roesch (pronounced like "fresh", but without the 'f') is a rather
jovial guy who spends his time going to conferences and drinking in bars
(at least until the cleaning crew kicks him out). In his spare time he
writes intrusion detection software.
Copyright 2000 Andrew R. Baker