¤ª´«¤á¥È¥ì¡¼¥Ë¥ó¥°¥³¡¼¥¹
Solaris´ØÏ¢½ñÀÒ
SolarisǧÄê»ñ³Ê
SolarisƦÃμ±
Solaris¥Ç¥¹¥¯¥È¥Ã¥×ÀßÄê
¢£Solaris10
zone¡¡FMA¡¡SMF¡¡ZFS
DTrace¡¡NFSv4¡¡IPFilter
Least Privilegeµ¡Ç½
x86/x64 Solaris¡¡ ²¾ÁÛ²½µ»½Ñ
¤½¤Î¾
¢£¥·¥¹¥Æ¥à´ÉÍý
¥¤¥ó¥¹¥È¡¼¥ë¡¡¥»¥¥å¥ê¥Æ¥£¥Á¥§¥Ã¥¯
¢£³Æ¼ï¥µ¡¼¥Ð¹½ÃÛ
Apache¡¡BIND¡¡sendmail¡¡squid
¢£³Æ¼ï¥µ¡¼¥Ð¡¦¥¹¥È¥ì¡¼¥¸´ÉÍý
Sun N1 Software
Sun Cluster
Solaris Volume Manager (SVM)
¢£¥»¥¥å¥ê¥Æ¥£ÀßÄê
snort¡¡sshd¡¡nmap¡¡IPSec
¢£¥Ñ¥Õ¥©¡¼¥Þ¥ó¥¹´ÉÍý
¥«¡¼¥Í¥ë¥Ñ¥é¥á¡¼¥¿
TCP/IP·Ï¥Ñ¥é¥á¡¼¥¿
NIC¥É¥é¥¤¥Ð·Ï¥Ñ¥é¥á¡¼¥¿
SnortSnarf¤Çsnort¤Î¥í¥°¤ò¥Á¥§¥Ã¥¯¤¹¤ë
snortsnarf¤Ïsnort¤Î½ÐÎϤ¹¤ë¥í¥°¤ò¤È¤Æ¤â¸«¤ä¤¹¤¤HTML¥Õ¥¡¥¤¥ë¤ËÊÑ´¹¤·¤Æ¤¯¤ì¤ë¥Ä¡¼¥ë¤Ç¤¹¡£
¤³¤ì¤Ë¤è¤êsnort¤Î¥í¥°¤ò¥Ö¥é¥¦¥¶¤«¤é´Êñ¤Ë¥Á¥§¥Ã¥¯¤¹¤ë¤³¤È¤¬¤Ç¤¤ë¤è¤¦¤Ë¤Ê¤ê¤Þ¤¹¡£
¢£¡¡Á°Äó´Ä¶¡¡
¡¡snort¥¤¥ó¥¹¥È¡¼¥ëºÑ¤ß (»²¾È: snort¤Î¥¤¥ó¥¹¥È¡¼¥ë)
¢£¡¡½àÈ÷
²¼µ¥µ¥¤¥È¤ÇSnortSnarf-021111.1.tar.gz¤òÆþ¼ê¤¹¤ë¡£
http://www.silicondefense.com/snortsnarf/
¢£¡¡SnortSnarf¤Î¥¤¥ó¥¹¥È¡¼¥ë¡¦ÀßÄê
| # ls SnortSnarf-021111.1 # cd SnortSnarf-021111.1 # ls COPYING Time-modules nmap2html Changes Usage sisr README cgi snortsnarf.pl README.SISR include utilities README.nmap2html new-annotation-base.xml # mkdir /usr/local/snortsnarf # cp -pr include snortsnarf.pl /usr/local/snortsnarf # cd /usr/local/snortsnarf # ls include snortsnarf.pl ============================ Time¥â¥¸¥å¡¼¥ë¤Î¥¤¥ó¥¹¥È¡¼¥ë ============================ http://search.cpan.org/ ¾åµ¥µ¥¤¥È¤«¤é¥â¥¸¥å¡¼¥ëJulianDay.pm, ParseDate.pm, Timezone.pm¤ò¥À¥¦¥ó¥í¡¼¥É¤·²¼µ¥Ç¥£¥ì¥¯¥È¥ê¤ËÇÛÃÖ¤¹¤ë¡£ # mkdir include/Time # cp /tmp/*.pm include/Time # ls include/Time JulianDay.pm ParseDate.pm Timezone.pm ================================= snortsnarfÍÑWeb¥Ç¥£¥ì¥¯¥È¥ê¤ÎºîÀ® ================================= # mkdir /usr/local/apache2/htdocs/snort-snarf =================== snortsnarf¤Î¼Â¹ÔÎã =================== # ./snortsnarf.pl -d /usr/local/apache2/htdocs/snort-snarf /var/log/snort/alert¡¡/var/log/snort/portscan.log -d ¤ÇºîÀ®¤¹¤ëindex.html¥Õ¥¡¥¤¥ë¤Î³ÊǼ¾ì½ê¤Î»ØÄê¡¢¤¢¤È¤Î¥Õ¥¡¥¤¥ë¤Ïsnort¤Î¥í¥°¥Õ¥¡¥¤¥ë¡ÊÊ£¿ô»ØÄê²Ä¡Ë ¢¨ snortsnarf¤Ïɬ¤º¥«¥ì¥ó¥È¥Ç¥£¥ì¥¯¥È¥ê¤Ç¼Â¹Ô¤¹¤ë¡£(¥¹¥¯¥ê¥×¥ÈÆâÉô¤Î¥Ñ¥¹¤Î»ö¾ð¤Ç¡¦¡¦¡¦) ============================== snortsnarf¤Î¼«Æ°¼Â¹Ô¥¹¥¯¥ê¥×¥È ============================== °Ê²¼¤Î¤è¤¦¤Ê¥¹¥¯¥ê¥×¥È¤òcron¤Ç¼«Æ°¼Â¹Ô¤µ¤»¤Æ¤ª¤¯¡£ # cat snortsnarf_run.sh #!/bin/bash cd /usr/local/snortsnarf ./snortsnarf.pl -d /usr/local/apache2/htdocs/snort-snarf /var/log/snort/alert /var/log/snort/portscan.log ¤Á¤Ê¤ß¤Ë¥í¥°¥Õ¥¡¥¤¥ë¤¬Â礤¯¤Ê¤ë¤È¤«¤Ê¤êÉé²Ù¤¬¤«¤«¤ë¤Î¤Ç¤¢¤Þ¤êÉÑÈˤ˹Ԥï¤Ê¤¤Êý¤¬¤è¤¤¡£¤è¤ê¥ê¥¢¥ë¥¿¥¤¥à¤Ë¶á¤¤¥í¥°¤Î¥Á¥§¥Ã¥¯¤ò¤¹¤ë¾ì¹ç¤Ïmysql+ACID¹½À®¤Çsnort¤ÈÏ¢·È¤µ¤»¤ë¤Î¤¬°ìÈÌŪ¡£ |
¡¡°Ê¾å¤Çsnortsnarf¤Î¥¤¥ó¥¹¥È¡¼¥ë¡¦ÀßÄê¤Ï½ªÎ»¤Ç¤¹¡£
¤¢¤È¤Ï¥Ö¥é¥¦¥¶¤«¤ésnortsnarf¤¬ÊÑ´¹¤·¤¿index.html¥Õ¥¡¥¤¥ë¤Ë¥¢¥¯¥»¥¹¤·¤Æ³Îǧ¤·¤Þ¤·¤ç¤¦¡£
(¤³¤³¤Ç¤Ï¾ï¼±Åª¤ÊApache¤ÎÀßÄê¤Ï¾Ò²ð¤·¤Æ¤ª¤ê¤Þ¤»¤ó¤¬¡¢ÅöÁ³¡¢snort¤Î¥í¥°¤Ï´ÉÍý¼Ô°Ê³°¸«¤ë¤³¤È¤¬¤Ç¤¤Ê¤¤¤è¤¦¤Ëǧ¾Ú¤Ê¤É¤Î¥¢¥¯¥»¥¹À©¸Â¤Ï¤·¤Æ¤ª¤¤Þ¤·¤ç¤¦¡£)
¡Ú¥¢¥ó¥±¡¼¥È¡Û
¤³¤Îµ»ö¤Ï¤¿¤á¤Ë¤Ê¤ê¤Þ¤·¤¿¤«¡©
¡¡¡¡¡¡¤Ï¤¤¡¡¡¡/¡¡¡¡¤¤¤¤¤¨
http://9f03eaa6736b23f3de3c90d200d1d32b-t.ncvxui.info 9f03eaa6736b23f3de3c90d200d1d32b [url]http://9f03eaa6736b23f3de3c90d200d1d32b-b1.ncvxui.info[/url] [url=http://9f03eaa6736b23f3de3c90d200d1d32b-b2.ncvxui.info]9f03eaa6736b23f3de3c90d200d1d32b[/url] [u]http://9f03eaa6736b23f3de3c90d200d1d32b-b3.ncvxui.info[/u] d0dcc556412a086f2aaa2d6f3acefbbe
Posted by: Keyon : 2007年06月08日 14:33
SunSolve Online
BigAdmin [ ÆüËܸìÈÇ ]
Solaris¥Õ¥©¡¼¥é¥à
OpenSolaris ¡Ú¥½¡¼¥¹¥³¡¼¥ÉÆþ¼ê¡Û
¥¸¥ç¥Ê¥µ¥ó¡¦¥·¥å¥ï¥ë¥Ä¤Î¥Ö¥í¥°
¢¡ ¤ä¤Ã¤Ñ¤ê Sun ¤¬¥¹¥¡ª
¢¡ ²¬ºê - Okazaki's blog
¢¡ ¥è¥Ã¥·¡¼¥Ö¥í¥°
¢¡ Masaki Katakai's Weblog