snort - An open source Network Intrusion Detection System (NIDS)

License: GPL
Snort is an open source network intrusion detection system, capable of
performing real-time traffic analysis and packet logging on IP networks.
It can perform protocol analysis, content searching/matching and can be
used to detect a variety of attacks and probes, such as buffer overflows,
stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts,
and much more.

Snort has three primary uses. It can be used as a straight packet sniffer
like tcpdump(1), a packet logger (useful for network traffic debugging,
etc), or as a full blown network intrusion detection system.

You MUST edit /etc/snort/snort.conf to configure snort before it will work!

There are 5 different packages available. All of them require the base
snort rpm (this one). Additionally, you may need to chose a different
binary to install if you want database support.

If you install a different binary package /usr/sbin/snort should end up
being a symlink to a binary in one of the following configurations:

	plain		Snort (this package, required)
	mysql		Snort with mysql (optional)
	postgresql	Snort with postgresql (optional)
	unixODBC	Snort with unixODBC (optional)
	oracle		Snort with oracle (optional, not official)
	inline		Snort with inline support (optional)

Please see the documentation in /usr/share/doc/snort- for more
information on snort features and configuration.


snort- [5.9 MiB] Changelog by Steve Sturges (2008-04-02):
- Added --enable-targetbased --enable-decoder-preprocessor-rules by default.

Listing created by Repoview-0.6.5-1.el5