Domain: la-samhna.de
Stories and comments across the archive that link to la-samhna.de.
Stories · 2
-
Open Source Security's Best Kept Secret
An anonymous reader writes "Prelude IDS Framework: "Open Source Security's Best Kept Secret" is an overview of the Prelude Project. The article touches upon the long list of devices and log types Prelude understands. As well as Prelude's ability to utilize patched versions of software like Snort, Nagios, Nessus, SamHain, etc. to all report to Prelude. There are also screen shots of two new front ends for Prelude (pylude and prewikka)." -
The Tiger Security Tool Has Been Resurrected
javifs writes "Do you remember TAMU's security tools? If so you might remember a tool that was developed when COPS, SATAN, and ISS were (back in 1994): Tiger. You might think it was dead, well it's not. Tiger has resurrected at Savannah and even has a new webpage and logo! (cool, isn't it?) Tiger has some interesting features that merit its resurrection, including a modular design that is easy to expand, and its double edge: an audit tool and a host intrusion detection system tool. Free Software intrusion detection is currently going many ways, however, from network IDS (with Snort), to the kernel (LIDS, or SNARE for Linux and Systrace for OpenBSD, for example), not mentioning file integrity checkers (many of these: aide, integrit samhain, tripwire...) and logcheckers (even more of these, check Counterpane's Log Analysis pages). Also, free software Linux/*BSD distributions have a miriad of security tools to do local security checks: Mandrake's msec, OpenBSD's /etc/security, SUSE's Seccheck... maybe Tiger could substitute them at some point in the future. Do you think Tiger has a place in the toolkit of the security professional? (I might be biased, though, after all I'm the upstream developer for Tiger now :-) ) In any case, have you downloaded and tested the latest release candidate for Tiger version 3.2?"