Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: OSSEC HIDS 2.0 (Default branch)
Special Forums News, Links, Events and Announcements Software Releases - RSS News OSSEC HIDS 2.0 (Default branch) Post 302293742 by Linux Bot on Tuesday 3rd of March 2009 05:50:05 PM
Old 03-03-2009
OSSEC HIDS 2.0 (Default branch)
OSSEC HIDS is a host-based intrusion detection system. It performs log analysis, integrity checking, rootkit detection, time-based alerting, and active response. License: GNU General Public License v3 Changes:
This version comes with numerous new features, including support for compiled (C-based) rules, new reporting tools, and agentless monitoring to allow file integrity checking on network devices (including firewalls, routers, etc). It also comes with support for new log formats, including Checkpoint logs, Yum, and a few more. Image

Image

More...
This User Gave Thanks to Linux Bot For This Post:
 

2 More Discussions You Might Find Interesting

1. Cybersecurity

Not being able to run SYSCHEKD in OSSEC local (HIDS)

I am newbee to OSSEC. My objective is to install OSSEC in a ubuntu 10.04 server, configure it and then install rootkits, tamper files and then scan for possible notification and alerts. BUT I tired and then changed few setting in ossec.conf but its nearly similar to default setting. After... (1 Reply)
Discussion started by: metalaarif
1 Replies

2. Red Hat

Regding OSSEC

FYI... Installed OSSEC server version 2.6 in Cent OS 6.2 and agents are web servers installed in chroot environment. Moreover ossec server and apache (web servers are agents) are installed in separate machines. In ossec.conf file, added below configuration in both server and agent. ... (0 Replies)
Discussion started by: vamsi_k
0 Replies

LEARN ABOUT DEBIAN

lire::ftp::iisftpdlfconverter

IisFtpDlfConverter(3pm) 				  LogReport's Lire Documentation				   IisFtpDlfConverter(3pm)

NAME

       Lire::FTP::IisFtpDlfConverter - convert Microsoft Ftp Server Logs into DLF

SYNOPSIS

       Lire::FTP::IisFtpDlfConverter

DESCRIPTION

       Lire::FTP::IisFtpDlfConverter converts Microsoft FTP Server log files into the FTP DLF format. Those log files are in a format which is
       based on the W3C Extended Log Format.

       To have the maximum information in you reports, we suggests that you log the following fields:

       time, time-taken, c-dns or c-ip, cs-uri-stem, sc-bytes

       We also support the cs-uri field.

       Other fields will be ignored.

LIMITATIONS

       The converter doesn't handle aggregation (record with count field) and will refuse to process those logs. Also it doesn't support changing
       the fields in the middle of the log file. This means that all records in the log file must have the same format.

AUTHORS

       Francis J. Lacoste <flacoste@logreport.org>, Wessel Dankers <wsl@logreport.org>

VERSION

       $Id: IisFtpDlfConverter.pm,v 1.7 2006/07/23 13:16:35 vanbaal Exp $

COPYRIGHT

       Copyright (C) 2001-2003 Stichting LogReport Foundation LogReport@LogReport.org

       This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by
       the Free Software Foundation; either version 2 of the License, or (at your option) any later version.

       This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of
       MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for more details.

       You should have received a copy of the GNU General Public License along with this program (see COPYING); if not, check with
       http://www.gnu.org/copyleft/gpl.html.

Lire 2.1.1							    2006-07-23						   IisFtpDlfConverter(3pm)
All times are GMT -4. The time now is 11:02 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy