[tor-relays] Intrusion Prevention System Software - Snort or Suricata or no IPS at all
Tristan
supersluether at gmail.com
Thu Oct 6 14:49:48 UTC 2016
Suricata allows direct access via the Tor network, Snort's website gave me
multiple failed Captchas before I could access anything. I'm going to do
some further research before I even think about implementing anything.
How does one detect false positives when running an IPS? Do you just
frequently check the alerts and change the rules when necessary?
On Thu, Oct 6, 2016 at 9:45 AM, Ralph Seichter <tor-relays-ml at horus-it.de>
wrote:
> On 06.10.16 16:24, oconor at email.cz wrote:
>
> > The subject of this thread is: Intrusion Prevention System Software -
> > Snort or Suricata
>
> Fixed that for you. ;-)
>
> > If the only thing you wanted to say was, that you're against that,
> > we're probably done ;)
>
> Stating that I oppose the idea of IPS as means of automatic censorship
> of Tor exit nodes is part of the discussion.
>
> -Ralph
> _______________________________________________
> tor-relays mailing list
> tor-relays at lists.torproject.org
> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
>
--
Finding information, passing it along. ~SuperSluether
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20161006/84f6f3ea/attachment.html>
More information about the tor-relays
mailing list