Security Basics mailing list archives

Re: File Integrity Software - PCI

From: jplee3 () yahoo com
Date: Tue, 11 Nov 2008 11:20:28 -0700

This may have already been brought up but OSSEC is another tool that could be used. Check it out - http://www.ossec.net/

It might be more 'difficult' to setup though, but I've found that tweaking the rules is probably the most 
time-consuming and difficult part. This is probably the case for most other FIMs.

We use Tripwire Enterprise at my company, but it isn't being utilized to the full extent and because of a lack of 
providing training to me, it's hard for me to use and fully understand. Overall, it's pretty complicated if you were 
just thrown in front of it and are expected to monitor security based on it.

Current thread:

File Integrity Software - PCI amatachick (Nov 10)
- RE: File Integrity Software - PCI Steve Freeman (Nov 10)
  - RE: File Integrity Software - PCI H. Kurth Bemis (Nov 10)
    - RE: File Integrity Software - PCI Sheldon Malm (Nov 10)
    - Re: File Integrity Software - PCI badz (Nov 12)
- RE: File Integrity Software - PCI Mohamed Farid (Nov 10)
- <Possible follow-ups>
- Re: File Integrity Software - PCI jplee3 (Nov 12)