Re: Recommended security management packages

To: debian-security@lists.debian.org
Subject: Re: Recommended security management packages
From: "Jeffrey L. Taylor" <jeff@austinblues.dyndns.org>
Date: Wed, 21 May 2003 09:40:21 -0500
Message-id: <20030521144021.GC6170@pogo.bearhouse.lan>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <Pine.LNX.4.53.0305202056040.1303@altaica>
References: <Pine.LNX.4.53.0305202056040.1303@altaica>

Quoting Tib <tib@tigerknight.org>:
> I'm looking for information on packages that will do a nice job of keeping
> an eye on my system security-wise. PackageS because I know that no one
> packages can do it all.
> 
> Currently all I've got is 'tiger', and while it does a good job it has
> issues like failed checksums against installed packages (well that's
> strange because I just installed that package and it already failes the
> checksum?) and such. Does anyone have any recommendations?
> 

John the Ripper (weak password detection), logcheck (batch checks on
syslogs), PortSentry (IDS w/ some reaction capability), AIDE or
Tripwire (file integrity checks), nmap (port scan) or Nessus
(vulnerability scans) scans from outside the box, Xlogmaster
(real-time checks on syslogs with action, e.g., e-mail your pager),
and snort (IDS).

HTH,
  Jeffrey

Reply to:

Follow-Ups:
- Re: Recommended security management packages
  - From: Tib <tib@tigerknight.org>

References:
- Recommended security management packages
  - From: Tib <tib@tigerknight.org>

Prev by Date: RE: PHP & imap-ssl support
Next by Date: Re: Recommended security management packages
Previous by thread: Recommended security management packages
Next by thread: Re: Recommended security management packages
Index(es):
- Date
- Thread