An Open Source Security Triple Play 65
Marcus Maciel writes to tell that Linux.com's Joe Barr recently took a look at OSSEC-HIDS, an open source host intrusion detection system. From the article: "According the OOSEC-HIDS Web site, it's more than a host intrusion detection system (IDS). It's also a security event manager and a security information manager, which makes it the security equivalent of a hat trick in hockey, a triple-play in baseball, or a rare triple-double in basketball. OSSEC-HIDS runs on both Windows and Linux/Unix. You can download the latest version along with the project's PGP public key, so you can verify the download." Linux.com and Slashdot are both owned by OSTG.
Re:Sporting Analogies (Score:4, Funny)
Xserv
Re:Sporting Analogies (Score:2)
How about a double-jump... (Score:1)
--
Vote with all your heart, but get a healthy dosage of mass-media first. Or just don't vote at all!
Re:How about a double-jump... (Score:1)
Re:Sporting Analogies (Score:3, Insightful)
Re:Sporting Analogies (Score:3, Insightful)
Re:Sporting Analogies (Score:2)
Re:Sporting Analogies (Score:3, Insightful)
Plus, of course, the analogy in the summary was so long by the time it finished I'd almost forgotten what the summary was about...
Re:Sporting Analogies (Score:2)
This is like a car with three wheels! (?)
Re:Sporting Analogies (Score:2)
Re:Sporting Analogies (Score:2, Interesting)
MLB: 30 teams x 162 games = 4860 games (possibly 2 triple plays per season or 1 every 2430 games)
NBA: 30 teams x 82 games = 2460 games (23 triple-doubles last season or 1 ever 106.95652173913043478260869565217 games)
NHL: 30 teams x 82 games = 2460 games (84 hat tricks last season or 1 every 29.285714285714285714285714285714 games)
Re:Sporting Analogies (Score:1)
Re:Sporting Analogies (Score:1)
Re:Sporting Analogies (Score:1, Insightful)
MLB: 162!/132!
NBA: 82!/52!
NHL: 82!/52!
Re:Sporting Analogies (Score:1)
I'm not a proper geek! (Score:3, Funny)
To whom to I report to hand back my geek membership card?
Re:I'm not a proper geek! (Score:2, Funny)
No need to feel dirty, my geeky friend. Go on your way with a clear conscience.
Re:I'm not a proper geek! (Score:2)
I actually got all the sporting metaphors and wish to correct.. or at least clarify on them.
Many more basketball triple-doubles occur during the course of a basketball season and hat-tricks in a hockey/soccer/"football" season than do triple plays in baseball.
Tripls plays aren't about skill, they're about a very specificly hit ball under a fairly rare circumstance.
Triple Double (Score:1)
Re:Triple Double (Score:1)
Nope; still don't get it.
Triple Double (Defined) (Score:1)
A triple-double is a basketball term, defined as an individual performance in a game in which a player accumulates double-digit totals (i.e., 10 or more) in any three of these categories: points, rebounds, assists, steals, and blocked shots.
The most common way for a player to achieve a triple-double is with points, rebounds, and assists, though on occasion elite defensive players may record 10 or more steals or blocked shots in a game.
A triple-double is seen as an indication of an excellent a
Good but could be improved (Score:4, Interesting)
Gesundheit.
Comment removed (Score:3, Funny)
Re:Translation (Score:2)
OSSEC is great (Score:5, Informative)
- Log Analysis, with a powerful xml-based rules system
- File integrity checker
- Rootkit detection
- Active response (automatically ban hosts on critical alerts)
- Mail reporting
- Server/clients or local installation
It's GPL and runs on many *nix OS. I've tried OSSEC for a few months to monitor a few servers and I must say I'm pretty impressed with it. Its log analysis system is powerful and easy to understand. I've met a few false positives, but you can easily define your own rules to ignore some events. The project is a bit young, but development is very active. Definitely worth trying if you are interested in Unix security.
Re:OSSEC is great (Score:2, Interesting)
Re:OSSEC is great (Score:4, Informative)
Re:OSSEC is great (Score:2, Interesting)
Last time I checked Nagios was a general-purpose monitoring system, a pain in the ass to configure and too bloated if all you want is just improving your security. An HIDS like OSSEC is better suited for this kind of task.
Re:OSSEC is great (Score:2)
Are you thinking of Snort, maybe?
For those who don't get how great this is (Score:5, Funny)
Re:For those who don't get how great this is (Score:4, Funny)
I'm not sure I'm following here - is that brown bread or white bread? Smoked ham or honey cured?
Re:For those who don't get how great this is (Score:2)
Ironically... (Score:5, Insightful)
Re:Ironically... (Score:2)
Actually, a triple-double [wikipedia.org] in basketball is when a player does three different things 10 or more times each in a single game.
Re:Ironically... (Score:2)
Re:Ironically... (Score:1)
Re:Ironically... (Score:1)
So, the analogy is more apt than it may at first seem.
Re:Ironically... (Score:2)
The goal of the sports is to increase the score, the cool thing is if someone does the same thing 3 times to achieve that.
The goal here is - as you say - to increase security. But here it is still being celebrated that three *different* things are done to achieve that. (except in the case of the "tripple double", but that is the exception that proves the rule. Plus it is a rediculous statistic anyway.)
Sorry, had to have the last word!
Re:For those who don't get how great this is (Score:4, Funny)
(If you just thought, "if I had a girlfriend, how would I get her to stay in my briefcase?", you might be a /.er)
Re:For those who don't get how great this is (Score:1)
Re:For those who don't get how great this is (Score:2)
So... it's a bit like a car that goes forwards and backwards, right?
Re:For those who don't get how great this is (Score:1)
So... it's a bit like a car that goes forwards and backwards, right?
AND it turns! HAT TRICKRe:For those who don't get how great this is (Score:2)
(Shakes head sadly...)
Re:For those who don't get how great this is (Score:2)
Three, sir!
Three!
Re:For those who don't get how great this is (Score:2)
In former Soviet Russia, losing wrong golf game get you put in hole FOR three.
-Eric
Ok if playing against Yankees, Knicks or Rangers (Score:1)
I suspect the black hats use the same metaphors to describe success, including goooooooooooooooooal!
how about... (Score:2)
Iv'e used this system for a while now... (Score:3, Informative)
Re:Iv'e used this system for a while now... (Score:1)
How soon before (Score:2)
Re:How soon before (Score:2)
PGP "verification" (Score:2)
Of course we all remember that PGP verification only means that the download was signed off on by the person or persons in possession of the corresponding PGP private key, not that that person is necessarily competent or trustworthy.
PGP/GPG signing is great, and necessary, but not sufficient for trust.
doesn't seem to be any uninstall scripts (Score:1)
Tried it.. its soso (Score:2)