Hi. I'm setting up our IDS using OpenBSD 2.8 and I'm using snort. Since
most of the FAQs I've read are Linux-centric I'm not sure if Tripwire and
Logchecker are the right tools being used by OpenBSD veterans.

Right now I'm having some problems (using "make bsdos" or "make generic"
causes errors during compile) installing logchecker (although snort is now
setup) but I think I can make it work.

For Tripwire since I still can't make it work I've used the mtree tool and
have kept the generated signatures offline.

The question is: Are there any other tools OpenBSD gurus uses besides the
snort and logchecker tandem?

Regards,

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]