Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: OpenSource Alternative to SourceFire's RNA

From: "AJ Butcher, Information Systems and Computing" <Alex.Butcher () bristol ac uk>
Date: Wed, 31 Mar 2004 12:54:24 +0100
--On 31 March 2004 10:00 +0100 Andy Cuff <talisker () securitywizardry com> wrote: 


Hi,
Please excuse me if I've grasped the wrong end of the stick, but RNA is a
passive OS fingerprinting tool which feeds into Lightning Console now
called Management Console.

Whilst ossim and threatman appear to be highly valuable tools, to my
knowledge they do not perform Passive OS Fingerprinting as required in the
original post.


No, but ossim integrates with p0f-2.x to provide this functionality.
It's necessary to change the reference to 'get_os_time()' to 'get_date()' in control_panel/os.php to get this working with ossim 0.9.3, for anyone trying it. 


-andy
Talisker Security Tools Directory
http://www.securitywizardry.com


Best Regards,
Alex.
--
Alex Butcher: Security & Integrity, Personal Computer Systems Group
Information Systems and Computing             GPG Key ID: F9B27DC9
GPG Fingerprint: D62A DD83 A0B8 D174 49C4 2849 832D 6C72 F9B2 7DC9




-------------------------------------------------------
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470&alloc_id=3638&op=click
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: