[ddp] prelude-lml : Security Information Management System [ Log Agent ]
daily-debian-package at enix.org
daily-debian-package at enix.org
Mon Oct 11 12:00:07 CEST 2010
Hello,
Today, I'm happy to present you the Debian package prelude-lml, which
is part of the admin section, and maintained by Mickael Profeta
<profeta at debian.org>.
This package contains : Security Information Management System [ Log
Agent ].
Prelude is a Universal "Security Information Management" (SIM) system.
Its goals are performance and modularity. It is divided in two main
parts :
- the Prelude sensors, responsible for generating alerts, such as
snort sensor, featuring a signature engine, plugins for
protocol analysis, and intrusion detection plugins, and the Prelude
log monitoring lackey.
- the Prelude report server, collecting data from Prelude sensors,
and generating user-readable reports.
Prelude-LML is a signature based log analyzer monitoring logfile and
received syslog messages for suspicious activity. It handle events
generated by a large set of components, including but not limited to:
Apache, BigIP, Grsecurity, Honeyd, ipchains, Netfilter, ipfw, Nagios,
NTsyslog, NuFW, PAM, Portsentry, Postfix, Proftpd, ssh, etc.
Package homepage :
http://packages.debian.org/unstable/admin/prelude-lml
Package bug homepage :
http://bugs.debian.org/prelude-lml
Package QA homepage :
http://packages.qa.debian.org/prelude-lml
Have fun with Debian packages !
--
Daily Debian package, by Thomas Petazzoni, thanks to Jérome Petazzoni
Daily-debian-package at the-doors.enix.org
http://the-doors.enix.org/cgi-bin/mailman/listinfo/daily-debian-package
http://thomas.enix.org/DebianPackageDay
More information about the Daily-debian-package
mailing list