HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 36 guests and 1 member online
EH-Net News Feeds
Latest Additions
 
Advertisement

You are here: Home arrow Forum arrow Resourcesarrow Toolsarrow OSSEC v1.6 Released
EH-Net
May 25, 2012, 12:57:28 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Advertise on EH-Net!! - Reasonable Rates, Highly Targeted Audience.
 
   Home   Help Calendar Login Register  
EH-Net > Resources > Tools (Moderator: don) > OSSEC v1.6 Released
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: OSSEC v1.6 Released  (Read 2424 times)
0 Members and 1 Guest are viewing this topic.
don
Editor-In-Chief
Administrator
Hero Member
*****
Offline Offline

Posts: 3916


Editor-In-Chief


View Profile WWW
« on: September 07, 2008, 11:56:34 PM »
OSSEC is an Open Source Host-based Intrusion Detection System. It performs log analysis, integrity checking, Windows registry monitoring, rootkit detection, real-time alerting and active response.

Quote

This new version delivers the most comprehensive update to OSSEC in its history, with numerous new features and bug fixes, including:

- New multi-server architecture
- New platform support for Microsoft Vista (and Server 2008)
- New platform support for VMware ESX
- Added active response module for Windows
- CIS benchmarks on Linux (through the policy auditing)
- Added the VMWare Security hardening guideline to the policy auditing
- Added support for McAfee VirusScan Enterprise logs
- Added support for VMware ESX hostd logs
- Added support for Mac OS FTP server logs
- New tools to better manage the data stored (syscheck_control, rootcheck_control, log_test)

And much more… Check the changelog to see all changes and contributors.


http://www.ossec.net/main/downloads

Don
Logged
CISSP, MCSE, CSTA, Security+ SME
mad_irish
Newbie
*
Offline Offline

Posts: 17



View Profile WWW
« Reply #1 on: September 08, 2008, 09:06:26 AM »
I think this might be a dupe of  OSSEC v. 1.6 Wink

Version 1.6 might not be completely ready for prime time yet though.  There have been numerous problems reported with the release, including non-functional Windows active response.  The main developer, Daniel Cid,  recently wrote to the OSSEC mailing list:

Hi all,

I think I figured out what was going on. Depending on the argument (if
it had spaces),
the command to block would not be called properly. I am pretty sure it is fixed
on the following snapshot:

http://www.ossec.net/files/snapshots/ossec-win32-080904.exe

Can you try with this version? You don't need to update the server,
just the agent side.

*I will release a v1.6.1 soon with the fixes for some of the reported
bugs so far.


Thanks,

--
Daniel B. Cid
dcid ( at ) ossec.net
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.16 | SMF © 2011, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.075 seconds with 23 queries.
 

gk_static-ad_feb2012.jpg
Global Knowledge: Build Security Skills to Protect & Defend

els_130x200fixed2.gif
eLearnSecurity Student Course Now Live!
5% Off with Code
ELS-EH-5

SANS Deals 4 EH-Netters
$150 OFF Any SANS Course in Any Format!
Coupon Code: EHN_Connect Including SANS Security West 2012 & SANSFIRE 2012
Recent Forum Topics

cbtnuggets_logo_125.jpg
Try CBT Nuggets Free!

Vote For EH-Net

Add to Technorati Favorites
technorati fave

 
         
Advertisement

© 2012 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.