Version 0.7 of the OSSEC HIDS is available.

From: Daniel Cid <danielcid@xxxxxxxxxxxx>
Date: Tue, 28 Mar 2006 21:37:58 -0300 (ART)

Version 0.7 of the OSSEC HIDS is available.

OSSEC HIDS is an open source host-based intrusion
detection system. It performs log analysis, integrity
checking, rootkit detection, time-based alerting and
active response.

This is one of the most improved versions so far. It
now includes support for squid, pure-ftpd, postfix and
AIX ipsec logs (in addition to a lot of improvements
to the previous rules).

The integrity checking engine now allows granular
options, where you can specify exactly what options
you want to monitor (checksum, size, ownership, etc).

The rootkit detection had a lot of improvements too,
reducing false positives on most of the systems and
with a lot of new anomaly checks to detect kernel
level rootkits.

We also have a new website and the installation in 4
different languages (portuguese, english, german and
turkish).

In addition to that, this version includes a lot of
bug fixes and performance improvements.

Complete Changelog:
http://www.ossec.net/en/v07-2006-03-29.html

To download the new version:
http://www.ossec.net/files/ossec-hids-0.7.tar.gz

Use our mailling list if you have any questions,
suggestions or comments :
http://www.ossec.net/en/mailing_lists.html

Thanks,

--
Daniel B. Cid
dcid @ ( at ) ossec.net
http://www.ossec.net

_______________________________________________________
Yahoo! doce lar. Faça do Yahoo! sua homepage.
http://br.yahoo.com/homepageset.html

---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity Planning,
Computer Emergency Response Teams, and Digital Investigations.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

Prev by Date: Re: in-to-out security
Next by Date: IE persistent cookie file format
Previous by thread: Virus traffic
Next by thread: IE persistent cookie file format
Index(es):
- Date
- Thread

Relevant Pages

Version 0.6 of the OSSEC HIDS is available for download.
... detection system. ... support for NIDS log analysis and an improved rootkit ... detection and integrity checking capabilities. ...
(Security-Basics)
Version 0.7 of the OSSEC HIDS is avalable.
... detection system. ... It performs log analysis, integrity ... The integrity checking engine now allows granular ... The rootkit detection had a lot of improvements too, ...
(Focus-IDS)
Version 0.6 of the OSSEC HIDS is available for download.
... detection system. ... support for NIDS log analysis and an improved rootkit ... detection and integrity checking capabilities. ...
(Focus-IDS)
OSSEC HIDS v0.4 available - log analysis, rootkit detection and integrity checking
... Version 0.4 of the OSSEC HIDS is now available. ... This new version includes a new rootkit detection ... an improved integrity detection engine (much ... To look at the log analysis rules: ...
(Focus-IDS)
OSSEC HIDS v0.4 available - log analysis, rootkit detection and integrity checking
... Version 0.4 of the OSSEC HIDS is now available. ... This new version includes a new rootkit detection ... an improved integrity detection engine (much ... To look at the log analysis rules: ...
(Security-Basics)