I've installed Snort and BASE on my Gentoo server, which is also my the
network router, by following http://lurker.gentoo-wiki.com/HOWTO_Snort.
It's generated a fair number of alerts over the last few weeks so it
looks like it's working. But how can I confirm it's 'preventing' attacks
as well as detecting them?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org