About Us Our Work Employment News & Events
MITRE Remote Access for MITRE Employees Site Map
Our Work
Overview
Mission Areas
Information Technology
MITRE Research Program
Technology Transfer Office
Technical Papers

Share this page

Follow Us On:
Visit MITRE on Facebook
Visit MITRE on Twitter
Visit MITRE on YouTube
View MITRE's RSS Feeds
Home > Our Work > Technical Papers >

Snort Management System: Managing Multiple Snort Instances on Many Systems

December 2006

Andy Bair, The MITRE Corporation

ABSTRACT

The snort management system enables engineers to efficiently manage and deploy small and/or large production snort environments. This system employs the open-source WebJob framework and several other open-source technologies including: oinkmaster, rsync, snort, and ssh. The system is designed to minimize the workload involved in managing the snort rules and related snort configuration files, while maintaining a high degree of security and robustness. A secondary goal of this system is to advance the open-source methodology for managing a large number of snort instances in an enterprise environment. This article describes how the system functions, and it further discusses the advantages and disadvantages of the solution.

» Download Paper [PDF, 448KB]

Additional Search Keywords

N/A

 

Page last updated: January 3, 2007   |   Top of page

Homeland Security Center Center for Enterprise Modernization Command, Control, Communications and Intelligence Center Center for Advanced Aviation System Development

 
 
 

Serving as Architects of Information Advantage.™
Copyright © 1997-2009, The MITRE Corporation. All rights reserved.
MITRE is a registered trademark of The MITRE Corporation.
Material on this site may be copied and distributed with permission only.
MITRE Named to FORTUNE's "100 Best Companies to Work For" List for Eighth Straight Year MITRE Named to "Best Places to Work in IT" List for Fifth Consecutive Year
 

Privacy Policy | Contact Us