The wiki is deprecated and due to be decommissioned by the end of September 2022.
The content is being migrated to other supports, new updates will be ignored and lost.
If needed you can get in touch with EGI SDIS team using operations @ egi.eu.
Difference between revisions of "EGI CSIRT:TDG/IDS"
| Line 1: | Line 1: | ||
{{new-Egi-csirt-header-TDG}} | {{new-Egi-csirt-header-TDG}} | ||
== Intrusion Detection Systems (IDS) == | == Intrusion Detection Systems (IDS) == | ||
=== Samhain IDS === | |||
[http://www.la-samhna.de/samhain/ Samhain] is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. | |||
Revision as of 13:01, 24 February 2012
EGI-CSIRT Public wiki EGI-CSIRT Private wiki
EGI-CSIRT Contacts | Back to TDG Main
Intrusion Detection Systems (IDS)
Samhain IDS
Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available.