摘要
针对当前越来越严重的网络入侵问题,本文设计了一个Linux下基于Snort的入侵检测系统。首先分析了入侵检测的原理,比较了特征比对与异常检测的优缺点;然后研究了Snort进行入侵检测的原理,并提出了一个入侵检测系统的设计方案;最后对本系统的优化提出了几点建议。
Nowadays,the network intrusion problem is more serious,this paper designed a intrusion detection system based on Snort.First of all,this paper analyzes the principles of intrusion detection,and compares the signature-based with the anomaly-based about advantages and disadvantages;secondly,study the principles of intrusion detection about Snort,and proposed an intrusion detection system design;final made a few point proposal about optimization of the system.
出处
《科技广场》
2011年第9期117-119,共3页
Science Mosaic