Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Intrusion Detection Systems mailing list archives

Re: Tripwire or alternative
From: stevege () i-way net uk (Steve George)
Date: Tue, 18 Jul 2000 18:03:08 +0100

Archive: http://msgs.securepoint.com/ids
FAQ: http://www.ticm.com/kb/faq/idsfaq.html
IDS: http://www-rnks.informatik.tu-cottbus.de/~sobirey/ids.html
UNSUBSCRIBE: email "unsubscribe ids" to majordomo () uow edu au
Hi,

I'm not really aware of any free filecheckers having enterprise level
reporting.  There are a number of free alternatives listed at
www.freshmeat.net although you'd have to hack your own scripts together I
guess: I've heard peoplesai AIDE is good.  You could say tripwire is a host
IDS, although I think that's pushing it.

Flightrecorder is a network IDS so it's in a different niche.  Some people
might want to run both a host and a network IDS.  There's good material
about your options at:

www.whitehats.com
www.networkintrusion.co.uk
Linuxsecurity.com and securityfocus.com have articles on Snort which is a
Free Linux network IDS - it may be enough but also something to play with
before you get your money out :-)

If you like dead trees then I found Stephen Northcutts book a nice
introduction to the area and not too expensive:
http://www.amazon.com/exec/obidos/ASIN/0735708681/o/qid=963938924/sr=8-1/ref
=aps_sr_b_1_3/002-6109722-6676043

Good luck,

Steve

At 04:53 PM 7/17/00 -0700, Roy Harrison wrote:

We're currently running the educational version of tripwire... no one is 
really administering it and the reports are just being ignored. As I see 
it, the short fall of this free version is the inability to centralize the 
databases/reports and the granularity/control of the reports. From what I 
saw it's quite cryptic as well. My company's a non profit and qualifies for 
tripwire's commercial product with a discount. We're considering going to 
it, but want to see if there are viable alternatives. Has any one put 
together something that can be used with the existing freeware version of 
tripwire as far as centralizing information and creating reports? Are there 
any other free or commercial products that may better/easier? How does 
Flight Recorder fit into the scheme of things. Obviously these are pretty 
green questions, but we had to get attacked for someone to get off their 
duffs and now they want to know everything yesterday. At least the check 
books are coming out :-)

Any direction would be greatly appreciated.

Thanks

Roy Harrison

__________________________________________________________
"A human being is part of a whole, called by us the "Universe,"
a part limited in time and space. He experiences himself,
his thoughts and feelings, as something separated from the rest
-a kind of optical delusion of his consciousness.
This delusion is a kind of prison for us, restricting us to our
personal desires and to affection for a few persons nearest us.
Our task must be to free ourselves from this prison by widening our
circles of compassion to embrace all living creatures and the whole of
nature in its beauty. "

- Albert Einstein (1879-1955)

The Natural Law Party www.naturallaw.org

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]