Snort Creator Makes Good

← Back to Stories (view on slashdot.org)

Posted by timothy on Monday July 1, 2002 @06:59AM from the no-bayou-or-weaseling-required dept.

Anonymous Coward writes: "Robin Miller, aka Roblimo, has written a great analysis of one of the first Open Source companies to be profitable before their IPO, Sourcefire! In this 'local boy makes good', we read about Team Fortress-playing programmer Marty Roesch, who writes Snort to beat his online gaming addiction. Now Snort is one of the most successful Intrusion Detection Systems out there and Marty's start-up is going gangbusters. Robin explains how Marty's company started in his basement (like Apple's garage), got profitable, then got venture capital in a time when everyone swears there is no venture. Marty even offers jobs at Sourcefire for the Slashdot crowd, 'Linux zealots, Open Source gurus, self-starters who are self motivating so I can just turn them loose...'"

20 of 288 comments (clear)

Careers? by cp4 · 2002-07-01 07:02 · Score: 5, Informative

Clicked on Careers and don't see anything for Linux zealots...

Technical Writer and Marketing Manager don't quite fit the bill.

Am I looking in the wrong place?
Misread the headline... by Anonymous Coward · 2002-07-01 07:02 · Score: 5, Funny

...and thought it was "Snort Creator Makes God".

I was like, whoa, cool...
Snort Slashdotted. by MisterBlister · 2002-07-01 07:03 · Score: 5, Funny

Can it still detect intrusions when its being hit by an infinite number of open source monkeys?
1. Re:Snort Slashdotted. by Col.+Panic · 2002-07-01 08:17 · Score: 3, Informative
  
  Just in case you were somewhat serious, yes! You can use a load balancer and tap even 1 Gb traffic.
great! by Arminius · 2002-07-01 07:04 · Score: 3, Interesting

It's good to see people who are making a difference in the open source world and not just criticize it!

--

------
Never underestimate the power of stupid people in large groups.
Snort?? by Myshkin · 2002-07-01 07:07 · Score: 5, Funny

With a name like snort he is probably making a bunch of money off of people who think they're buying some cocaine.
And also useful... by User+956 · 2002-07-01 07:08 · Score: 5, Informative

I'm sure some of you would prefer the Windows version of Snort, put together by Silicon defense.

--
The theory of relativity doesn't work right in Arkansas.
1. Re:And also useful... by carlos_benj · 2002-07-01 07:18 · Score: 5, Funny
  
  I'm sure some of you would prefer the Windows version of Snort
  
  Would that be 'blow'?
  
  --
  --
  
  As a matter of fact, I am a lawyer. But I play an actor on TV.
Good luck. by saintlupus · 2002-07-01 07:10 · Score: 5, Funny

Linux zealots, Open Source gurus, self-starters who are self motivating so I can just turn them loose...

...are actually off doing something interesting, rather than spending their time fucking about on Slashdot.

--saint
Sourcefire \.'ed by unformed · 2002-07-01 07:14 · Score: 3, Interesting

Not really surprised...you had to state that he's offering jobs, didn't you?
But will he remain profitable? by jschrod · 2002-07-01 07:18 · Score: 4, Interesting

The point is not if he is profitable, but if he will remain to be so after venture capital and the associated demands came into his company. I hope that this guy did a very thorough cost-benefit analysis before he took the money.
Venture capitalists are not in for the long run, they want to capitalize their investments in the mid term. Quite some companies went bankrupt or got in difficulties after external money and the demand for quick market grab came in and drove solid growth strategy out. Look at SuSE for an example from the Linux world.
Disclaimer: I'm owner and CEO of a (privately held, incorporated) company. We still make profits, even in this harsh market, because we didn't join the hype train, but brought solid add-on value to our customers. I wish Marty Roesch luck in choosing his business strategy...

--
Joachim

People don't write Manifestos any more -- what's going on in this world? [Frank Zappa]
Step two revealed by gmhowell · 2002-07-01 07:27 · Score: 5, Insightful

First go read the newsforge article.... Okay, the joke is:

Step one: develop open source software
Step two: mumble, mumble
Step three: profit!

Now, it seems that step two is revealed. It's actually a few steps. Now, for the first time ever:

Step two (a): Come up with (proprietary) tools that make the basic (GPL) Snort code easy to understand and use for non-technical managers.
Step two (b): Load Snort and the additional tools into a box, and sell the box as a complete solution, instead of just selling software.

It's been said before that there is no incentive to make OSS easy to use. Here (and elsewhere) is the proof. Make it hard to use. Release it. BUT, make the config tools easy to use, IF you pay for them.

I'm not slagging the guy, he's gotta eat. But it is another notch in the belt for those who are cynical about OSS and business.

--
Jesus was all right but his disciples were thick and ordinary. -John Lennon
1. Re:Step two revealed by wessto · 2002-07-01 07:35 · Score: 3, Informative
  
  This is evident in Sun's iPlanet suite of application servers. You can get the entire enterprise edition of the server as a command-line set of tools absolutely free, however the nice GUI's for application deployment, monitoring and configuration will cost you.
2. Re:Step two revealed by crimoid · 2002-07-01 07:40 · Score: 5, Insightful
  
  Exactly, but this is a GOOD thing.
  
  Developers get to eat (and maybe pay rent), and customers aren't tied to one vendor.
  
  In addition the developer can get the assistance from the community at large, while the customer has equal opportunity to review the code that they are using.
  
  This is a shining example of how to leverage Open Source and make a living at it. Find a middle-ground where the core code is usable but not so easy that a monkey in a suit can install it.... the techies can run it for free and the suits can pay for it. I don't see how this is a bad thing.
3. Re:Step two revealed by carlos_benj · 2002-07-01 07:45 · Score: 3, Insightful
  
  I'm not slagging the guy
  
  Sure you are. If you read that far down into the article you had to read about the technical guys who gladly would have installed snort but couldn't get it past the suits because it didn't come from a 'company'. In other words, he could have sold the product as-is. The problem was that so could anyone else. The GUI front end for the phb's, a preloaded box, all that is just differentiation (what makes us better than the other guys).
  
  --
  --
  
  As a matter of fact, I am a lawyer. But I play an actor on TV.
4. Re:Step two revealed by gmhowell · 2002-07-01 08:05 · Score: 3, Insightful
  
  Honestly, I did miss the part (or underplayed) where he said the tools the company developed helped corporate buy-in.
  
  I think the thing that helped more than the product was the price tag. If you sell it for $49.95, it's not worth that much to a Fortune 100. But $20,000 per box plus $10k per sensor... That must really be worth something if you are charging that much for it.
  
  --
  Jesus was all right but his disciples were thick and ordinary. -John Lennon
I know at least one earlier by T.E.D. · 2002-07-01 08:27 · Score: 4, Interesting

ACT is a company that creates only free software. They've been around since the late 90's, and I understand they have been in the black for years, perhaps since inception. They are a privately held company, and as far as I know, have no plans to ever do an IPO. Perhaps that's why they don't get much press (although RMS likes to use them as examples in his speeches).
Re:yah, snort screws it's developers by SomeOtherGuy · 2002-07-01 09:44 · Score: 4, Interesting

Maybe not in up front dollars...But if any open source package gets "huge" or becomes a "killer app" then being one of the "core developers" will mean much on the old Resume. Ask Linus or some of the Apache folks.

In the medical field (and in some degrees education) it is considered a huge career boost to get "published" in a journal....Considering the amount of money a Dr. makes -- just getting a concept or research published does not make tons of cash -- but the future dollars he makes "because" he was published are very big!

P.S. -- I work for a big Fortune 500 company and Snort has been all the rage this year so far. (Last year it was Apache).....

--
(+1 Funny) only if I laugh out loud.
Re:Other step by Jason+Earl · 2002-07-01 10:13 · Score: 3

Clearly you didn't read the article. The biggest difference between Sourcefire and most of the other crash and burn software companies (whether selling Free softwware or commercial software) was that Marty and friends have not spent money they didn't have. They ran the company out of Marty's house for a while, and when they finally did get offices they bought pre-furnished offices from a burnout at pennies on the dollar.
In fact, the cycle you describe is common in the commercial software world as well. I pay maintenance fees on several large commercial software packages that I have no intention of ever updating to the newest version. The version I have works fine, and the new version had "issues" in my environment. I pay the maintenance fees as insurance.
Microsoft has a large enough market, and enough clout that they can force their customers to upgrade, but most software companies don't have that kind of leverage.
Demarc by checkitout · 2002-07-01 10:28 · Score: 3, Informative

If you're checking out snort for the first time, I highly recommend using Demarc PureSecure which is free as in beer (aka for personal use). It's by far the best front end for snort, and does host based checks as well.

The screenshots are mouthwatering. :)