I am the UNIX system administrator for the Information Services Division of the Department of Administration for Indiana state govt. We provide telecoms, networking, and data processing for state agencies. Recently, the state decided that Unix and Client/Server would be a Good Thing (tm) to get into, hence I was hired. Since I'm the only person with real experience with Unix and the Internet, I've become the de facto Internet Security Person. We've acquired a firewall and, due to the way this firewall (BorderWare) is set up, have decided to have some machines on the outside to provide public information. Naturally, we would like to know when these machines are compromised. Similarly, because of the fact that many different agencies with different levels of trust are connected on our local campus, we need to protect machines on the inside as well. My main interest in this list is learning more about Intrusion Detection (a process I just went through for Firewalls) so that I can make more informed decisions about where we need to head in the future. Kevin T. Likes klike@source.isd.state.in.us Kevin_T._Likes_at_isdlan@ima.isd.state.in.us