Question

You cannot run snort in one of the following ways
a) without being an administrator with root access
b) daemon process
c) command line process
d) real time signature detection

Answer 1

Snort is an intrusion detection system developed by Cisco in the year 1998.

The IDS is written in C language and can be run using various ways.

• Snort can run by someone who is not the administrator of the system and without any root access. This is one of the major disadvantage of snort.
• Snort can also be run as daemon process using daemon processing tools.
• One of the major advantage of snort is the use of command line for execution. A variety of functions can be performed from command line operations.

Snort cannot used to detect real time signatures as is an intrusion detection system.

Hence, (d) real time signature detection is the answer.