[logs] OSHids 0.3

From: Daniel Cid (danielcid@private)
Date: Tue Feb 17 2004 - 11:09:52 PST

  • Next message: Tina Bird: "[logs] solaris inetd -t (fwd)"

    A new version of the OsHids is available. 
    
    This version comes with a new PHP interface to monitor
    your logs via web, with some statistcs (like the most
    common log, the total number of logs analyzed, etc)
    and
    with a database with the most common logs to avoid
    false-positives...
    
    More information(screenshots, readme, etc):
    http://www.ossec.net/oshids/
    
    Download:
    http://www.ossec.net/oshids/files/oshids-0.3.tar.gz
    
    The entries in the log db (very few at the moment):
    http://www.ossec.net/oshids/oshids-logs-db.txt
    
    --
    OsHids is an Open Source software that analyzes your
    log files and take some actions if 
    it founds something malicious. The OsHids can be run
    on "Real-time", as a daemon, or you 
    can execute it using crontab. 
    
    When OsHids finds something malicious (specified on
    the oshids.rules), it takes a 
    pre-defined action. At this version, we support: 
    
    
    Notify by email 
    Log in html 
    Log in txt 
    SNMP trap (*not completed) 
    
    Since v0.3, OsHIDS comes with a database (with a few
    log entries) to avoid some false-positives.
    
    --
    
    Thanks,
    
    Daniel B. Cid 
    
    
    ______________________________________________________________________
    
    Yahoo! Mail - O melhor e-mail do Brasil! Abra sua conta agora:
    http://br.yahoo.com/info/mail.html
    _______________________________________________
    LogAnalysis mailing list
    LogAnalysis@private
    http://lists.shmoo.com/mailman/listinfo/loganalysis
    



    This archive was generated by hypermail 2b30 : Tue Feb 17 2004 - 11:14:14 PST