[402] in Intrusion Detection Systems
Re: Good logging and real-time alert tools ?
daemon@ATHENA.MIT.EDU (ajbaines)
Sun Nov 19 21:10:44 1995
From: ajbaines <AndyB@ajbaines.demon.co.uk>
To: ids@uow.edu.au
Date: Thu, 16 Nov 1995 19:00:24 +0000
Reply-To: ids@uow.edu.au
> Hi,
>
> Can someone give me some pointers to any good logging software and/or
> real-time alert generation software (beeper, e-mail, etc.).
>
> Steve
>
Steve,
You might be interested in Security Manager from March
Systems in the UK. This package will allow you to initially scan your
systems (either standalone or networked) for vulnerabilities and make
recommendations on how to address any problems found. From this you
can establish a baseline which can be checked against via periodic
runs to look for discrepencies. In excess of 200 checks are carried out
and you can add your own site specific checks if required. The latest
version of the software allows alerts to be raised (via an SNMP trap, mail
item or call to syslog(3)) and will interface with the C2 option on some
flavours of UNIX. It runs on a number of different UNIX variants and a
common FMLI or X interface is provided.
Let me know if you want more info, Andy
-----BEGIN PGP SIGNATURE-----
Version: 2.6.2
iQB1AwUBMIPM3zb35F6a6+dNAQEXKQL+PVH6ZogrtmEwrnsLsYq85gYNwL7/hkLw
EkPbsLqcyVNAphaUL7ZV8vJRCbU6i6Q4q/QyvsFjoZhIiE3Wp5dysjo4czOJn/5U
U/I2e8HzpbHmbrM9pklcW2Qiowew+Dw2
=ANAz
-----END PGP SIGNATURE-----
