IDS/IPS and File Integrity Monitory Systems
colbyw at gmail.com
Thu Sep 27 18:47:04 MDT 2007
-----BEGIN PGP SIGNED MESSAGE-----
On 9/27/07, Kenneth Burgener <kenneth at mail1.ttak.org> wrote:
> Colby W. wrote:
> > Kenneth,
> > Take a look at OSSEC HIDS (http://www.ossec.net).
> Thanks Colby, that looks like a good suggestion. Have you used OSSEC
> HIDS in a production environment? Is it pretty reliable?
I don't have a production environment to use it with but there are
some folk in #ossec (freenode) who do. Some have it deployed to
several hundred computers; OSSEC is very scalable.
Reliable? Yes, very much so and its reliability increases with each
release--I've been using it for a little over a year now. I'm looking
forward to the next release that'll support database logs and logging
to databases (pgsql, mysql, etc.).
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
-----END PGP SIGNATURE-----
More information about the PLUG