Date: Thu, 03 May 2001 17:00:43 -0700 From: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca> To: Glenn G <glenn@geekazoid.com> Cc: security@FreeBSD.ORG Subject: Re: Security Monitors Message-ID: <200105040000.f4400od16783@cwsys.cwsent.com> In-Reply-To: Your message of "Thu, 03 May 2001 09:18:25 PDT." <3AF184D1.267A76D8@geekazoid.com>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <3AF184D1.267A76D8@geekazoid.com>, Glenn G writes: > Good Morning All! I have a quick question regarding security > monitoring. We have a Linux server that was recently breeched > (completely my fault btw. Never got around to securing it up very > well.) > > To my point...FreeBSD has been much more secure in my limited experience > than most other OS's out there. I would however like to install more > monitoring software on the box so it will alert me if there has been an > attack. I have been looking at "mon", "bro", and "logcheck". Can > anyone give any recommendations? Experiences? Take a look at swatch in ports. Granted you'll need to define to swatch regular expressions in your logs that could trigger some action such as paging you on your cell phone/pager. Regards, Phone: (250)387-8437 Cy Schubert Fax: (250)387-5766 Team Leader, Sun/Alpha Team Internet: Cy.Schubert@osg.gov.bc.ca Open Systems Group, ITSD, ISTA Province of BC To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200105040000.f4400od16783>