In message <3AF184D1.267A76D8geekazoid.com>, Glenn G writes:
> Good Morning All! I have a quick question regarding security
> monitoring. We have a Linux server that was recently breeched
> (completely my fault btw. Never got around to securing it up very
> well.)
>
> To my point...FreeBSD has been much more secure in my limited experience
> than most other OS's out there. I would however like to install more
> monitoring software on the box so it will alert me if there has been an
> attack. I have been looking at "mon", "bro", and "logcheck". Can
> anyone give any recommendations? Experiences?

Take a look at swatch in ports. Granted you'll need to define to
swatch regular expressions in your logs that could trigger some action
such as paging you on your cell phone/pager.

Regards, Phone: (250)387-8437
Cy Schubert Fax: (250)387-5766
Team Leader, Sun/Alpha Team Internet: Cy.Schubertosg.gov.bc.ca
Open Systems Group, ITSD, ISTA
Province of BC

To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]