Earlier while troubleshooting a possible issue with VMWare Player on Ubuntu Linux I needed to sniff broadcast traffic. The goal was to see if there were multiple MAC addresses sending out broadcast traffic after VMWare Player was installed on Ubuntu even without a VM actually running. Below is a quick example of how to sniff Ethernet broadcast and multicast traffic using tcpdump.
Although I am assuming you know what Screen is and how to use it I will quickly cover the basics just in case. Screen is a wonderful program that creates a “session” in which several “windows” exist. In each window is a shell prompt, from which commands can be executed and programs can be run. The man page for screen can be seen here
This may seem simple to some people but to others it is not so easy. If you installed Snort yourself you will already know where the rules file is however, these days many Linux distros come with snort pre installed with mysql configured so there is nothing to do but start Snorts IDS.
When I first started researching this it appeared the iPhone and iPod Touch might not be able to run multiple processes, but I was starting to wonder how in the world could that be. This does not appear to be the case though and instead it appears that Apple has set forth some fairly strict guidelines to keep developers from developing applications that eat up tons of RAM by allowing them to run wild with background processes. The iPhone has 128MB of RAM thus it could be chopped down to nothing very quickly by multiple applications running at the same time.