PaulDotCom mailing list archives
HIDS advice?
From: chris.rimondi at gmail.com (Christopher Rimondi)
Date: Tue, 18 Aug 2009 15:06:18 -0400
I have used OSSEC for the past three years and believe it is an excellent IDS. The rule set is expansive and flexible. It also encrypts all communication between the agents and the server. Also, check out the WUI. It has got pretty decent search functionality. Not on the order of Splunk but, it gets the job done. Thanks, Chris Rimondi -------------- next part -------------- An HTML attachment was scrubbed... URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20090818/10d591f6/attachment.htm
Current thread:
- HIDS advice? lists at truthisfreedom.org.uk (Aug 17)
- HIDS advice? Erik Harrison (Aug 17)
- HIDS advice? Jason Wood (Aug 17)
- <Possible follow-ups>
- HIDS advice? Christopher Rimondi (Aug 18)
- HIDS advice? Ron Gula (Aug 18)
- HIDS advice? Joe Magee (Aug 19)
- HIDS advice? Ron Gula (Aug 20)
- HIDS advice? Dale Stirling (Aug 20)
- HIDS advice? Ron Gula (Aug 18)
- HIDS advice? Mike Patterson (Aug 19)