Difference between revisions of "EGI CSIRT:TDG/IDS"
Jump to navigation
Jump to search
Line 1: | Line 1: | ||
{{new-Egi-csirt-header-TDG}} | {{new-Egi-csirt-header-TDG}} | ||
== Intrusion Detection Systems (IDS) == | == Intrusion Detection Systems (IDS) == | ||
=== Samhain IDS === | |||
[http://www.la-samhna.de/samhain/ Samhain] is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. |
Revision as of 13:01, 24 February 2012
EGI-CSIRT Public wiki EGI-CSIRT Private wiki
EGI-CSIRT Contacts | Back to TDG Main
Intrusion Detection Systems (IDS)
Samhain IDS
Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available.