Re: Real Time monitoring/alerting utility..

To: debian-user@lists.debian.org
Subject: Re: Real Time monitoring/alerting utility..
From: Tim Kelley <tpk@r00tserverz.net>
Date: Wed, 25 Aug 2004 17:24:57 -0500
Message-id: <[🔎] 20040825222457.GE9745@scatterbolt.r00tserverz.net>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 7B5E506659A5D344A505F0F27972D87549D17B@datafx-sbs.DataFX.local>
References: <[🔎] 7B5E506659A5D344A505F0F27972D87549D17B@datafx-sbs.DataFX.local>

On Thu, Aug 26, 2004 at 08:14:50AM +1000, Michael Bellears wrote:

> No - He wants to be notified immediately if an FTP or SSH connection is
> established.

Using snort and tailing the logfile, it doesn't get much more real
time than that.  Just modify the config files to treat all accesses as
alerts.  Use acidlab with it and you have a history of every access,
ever.

-- 
  _   _   _   _   _   _   _   _   _   _   _   _   _  
 / \ / \ / \ / \ / \ / \ / \ / \ / \ / \ / \ / \ / \ 
( t | i | m | @ | i | t | . | k | p | t | . | c | c )
 \_/ \_/ \_/ \_/ \_/ \_/ \_/ \_/ \_/ \_/ \_/ \_/ \_/ 
GPG key fingerprint = 1DEE CD9B 4808 F608 FBBF  DC21 2807 D7D3 09CA 85BF

Reply to:

Follow-Ups:
- Re: Real Time monitoring/alerting utility..
  - From: Simon Kitching <simon@ecnetwork.co.nz>

References:
- RE: Real Time monitoring/alerting utility..
  - From: "Michael Bellears" <MBellears@staff.datafx.com.au>

Prev by Date: Re: windowmanager stopped working
Next by Date: Re: Real Time monitoring/alerting utility..
Previous by thread: RE: Real Time monitoring/alerting utility..
Next by thread: Re: Real Time monitoring/alerting utility..
Index(es):
- Date
- Thread