HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 63 guests online
 
Free Business and Tech Magazines and eBooks

You are here: Home arrow Resourcesarrow Toolsarrow OSSEC v1.6 Released
EH-Net
May 19, 2013, 02:51:54 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
EH-Net > Resources > Tools (Moderator: don) > OSSEC v1.6 Released
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: OSSEC v1.6 Released  (Read 2780 times)
0 Members and 1 Guest are viewing this topic.
don
Editor-In-Chief
Administrator
Hero Member
*****
Offline Offline

Posts: 4165


Editor-In-Chief


View Profile WWW
« on: September 07, 2008, 11:56:34 PM »
OSSEC is an Open Source Host-based Intrusion Detection System. It performs log analysis, integrity checking, Windows registry monitoring, rootkit detection, real-time alerting and active response.

Quote

This new version delivers the most comprehensive update to OSSEC in its history, with numerous new features and bug fixes, including:

- New multi-server architecture
- New platform support for Microsoft Vista (and Server 2008)
- New platform support for VMware ESX
- Added active response module for Windows
- CIS benchmarks on Linux (through the policy auditing)
- Added the VMWare Security hardening guideline to the policy auditing
- Added support for McAfee VirusScan Enterprise logs
- Added support for VMware ESX hostd logs
- Added support for Mac OS FTP server logs
- New tools to better manage the data stored (syscheck_control, rootcheck_control, log_test)

And much more… Check the changelog to see all changes and contributors.


http://www.ossec.net/main/downloads

Don
Logged
CISSP, MCSE, CSTA, Security+ SME
mad_irish
Newbie
*
Offline Offline

Posts: 17



View Profile WWW
« Reply #1 on: September 08, 2008, 09:06:26 AM »
I think this might be a dupe of  OSSEC v. 1.6 Wink

Version 1.6 might not be completely ready for prime time yet though.  There have been numerous problems reported with the release, including non-functional Windows active response.  The main developer, Daniel Cid,  recently wrote to the OSSEC mailing list:

Hi all,

I think I figured out what was going on. Depending on the argument (if
it had spaces),
the command to block would not be called properly. I am pretty sure it is fixed
on the following snapshot:

http://www.ossec.net/files/snapshots/ossec-win32-080904.exe

Can you try with this version? You don't need to update the server,
just the agent side.

*I will release a v1.6.1 soon with the fixes for some of the reported
bugs so far.


Thanks,

--
Daniel B. Cid
dcid ( at ) ossec.net
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.066 seconds with 23 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.