General instructions for testing the new Snare kernel patch:
------------------------------------------------------------
Install the same version of the kernel that the Snare development team
are using:
rpm -ivh ftp://speakeasy.rpmfind.net/linux/redhat/updates/9/en/os/i386/kernel-source-2.4.20-24.9.i386.rpm

Patch and compile the kernel
* cd /usr/src
* wget http://www.intersectalliance.com/projects/Snare/Download/linux-2.4.20-24.9.patch
* cd linux-2.4.20-24.9
* patch -p1 <../linux-2.4.20-24.9.patch
* make mrproper
* make clean
* cp /boot/*conf* .config
* make oldconfig
  - Turn on C2_AUDIT under General when the option comes up.
  - leave other options as default, unless you know what they're doing.
* make dep
* make
* make modules
* make modules_install
* make install

Install the Snare audit daemon using RPMs, SRPMs or source tar.gz files
according to your preference.

Reboot your system, and select the new patched kernel from the GRUB/Lilo list
* service snare restart