Bug#618674: ITP: sagan-rules -- Real-time System & Event Log Monitoring System [rules]
Owner: Pierre Chifflier <email@example.com>
* Package name : sagan-rules
Version : 10212010-r1
Upstream Author : Champ Clark III <firstname.lastname@example.org>
* URL : http://sagan.softwink.com/
* License : BSD
Programming Lang: other (text files)
Description : Real-time System & Event Log Monitoring System [rules]
Sagan is a multi-threaded, real time system- and event-log monitoring
system, but with a twist. Sagan uses a “Snort” like rule set for
detecting malicious events happening on your network and/or computer
If Sagan detects a potentially bad event, that event can be stored to a
Snort database (MySQL/PostgreSQL), send it to a SIEM tool like Prelude,
or send an email.
This package provides the rules for Sagan.