Snort Alert Collection and Analysis Suite

This document outlines separating Snort IDS Collection and Analysis Suite duties across a minimum of three servers (Snort sensor, MySQL database and an ACID web server) to gain optimal coverage and performance. The suggestion is to use Linux for all server components and Windows XP for management...
Chip Calhoun
November 6, 2003

All papers are copyrighted. No re-posting of papers is permitted