On Fri, Sep 21, 2018 at 12:01:55PM +0300, Paul Irofti wrote:
> Hi,
>
> Attached is a new port for ossec-hids.
>
> OSSEC is a scalable, multi-platform, open source Host-based Intrusion Detection
> System (HIDS). It has a powerful correlation and analysis engine, integrating
> log analysis, file integrity checking, Windows registry monitoring, centralized
> policy enforcement, rootkit detection, real-time alerting and active response.
>
>
> Testing has shown encouraging results. The only issue that I am aware of
> at this moment is that real-time file monitoring sometime stops working
> without anything in the logs or any daemons crashing. I plan on testing
> this further, but it might be a software defect not a porting omission
> on my end.
>
>
> Any comments? OK to import?
>
> Thanks,
> Paul
Here is an updated tarbal with a few fixes. I plan on importing this
later today or tomorrow morning if noboday objects.
Paul
No comments:
Post a Comment