Menu
▾
▴
[Os-sim-support] is there a recent doc ( 2009 - 2010 ) about ossim installation
|
From: Aro R. <ra...@ho...> - 2010-08-25 13:45:29
|
Hello, My project at university is about compiling and running OSSIM. I must compile OSSIM source code on Debian lenny. But the doc version is old. the last update was in 2004 ... So many patch failed ( for example I cannot patch snort with ossim patch. It fails ). is there a recent doc ( 2009 - 2010 ) about ossim installation. Otherwise what can I do ? ( my teacher do not want I make "lazy install" ( using debian package provided by alienvault ) Thanks for your help > From: os-...@li... > Subject: Os-sim-support Digest, Vol 35, Issue 1 > To: os-...@li... > Date: Wed, 28 Jul 2010 18:56:33 +0000 > > Send Os-sim-support mailing list submissions to > os-...@li... > > To subscribe or unsubscribe via the World Wide Web, visit > https://lists.sourceforge.net/lists/listinfo/os-sim-support > or, via email, send a message with subject or body 'help' to > os-...@li... > > You can reach the person managing the list at > os-...@li... > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of Os-sim-support digest..." > > > Today's Topics: > > 1. Problem with Cisco Pix (Houcem HACHICHA) > 2. ossim agent does not receive traffic (Aro RANAIVONDRAMBOLA) > 3. OSSIM Source Code / Web Site (Aro RANAIVONDRAMBOLA) > 4. Re: OSSIM Source Code / Web Site (Ritter, Nicholas) > 5. Re: OSSIM Source Code / Web Site (Pablo) > > > ---------------------------------------------------------------------- > > Message: 1 > Date: Wed, 23 Jun 2010 20:01:34 +0100 > From: Houcem HACHICHA <hou...@gm...> > Subject: [Os-sim-support] Problem with Cisco Pix > To: os-...@li... > Message-ID: > <AAN...@ma...> > Content-Type: text/plain; charset="iso-8859-1" > > Hi guys, > > I performed a OSSIM 2.2 fresh installation, with no cards at promisc mode. I > needed to feed it with CISCO PIX logs. > So I redirected those logs using syslog (UDP:514), to the ossim server I > just installed. Running TCPdump on the server shows that those logs are > indeed recieved by the OSSIM server. I activated cisco-pix pluguin using > (only) ossim-setup on the server side. > > Back to the web frontend, events from CISCO-Pics are not pouring in :( > > Am I missing something here? Does the plugin need more configuration? Do I > need to send the syslog traffic throught another port/protocol? Do I need to > add the CISCO Pix to the assets list or something? > > > Please help > -- > Kind regards > > Houcem HACHICHA > -------------- next part -------------- > An HTML attachment was scrubbed... > > ------------------------------ > > Message: 2 > Date: Fri, 25 Jun 2010 10:51:40 +0200 > From: Aro RANAIVONDRAMBOLA <ra...@ho...> > Subject: [Os-sim-support] ossim agent does not receive traffic > To: <os-...@li...> > Message-ID: <BAY...@ph...l> > Content-Type: text/plain; charset="iso-8859-1" > > > > Hi, > I installed ossim-server and ossim-agent on a host A and I installed snare ( a sensor ) on a host B. A and B are linked by a SWITCH. > the problem : the agent which is on A does not receive the traffic ( the events ) from host B. > thanks for your help > > > _________________________________________________________________ > Vous voulez regarder la TV directement depuis votre PC ? C'est tr?s simple avec Windows 7 > http://clk.atdmt.com/FRM/go/229960614/direct/01/ > -------------- next part -------------- > An HTML attachment was scrubbed... > > ------------------------------ > > Message: 3 > Date: Wed, 28 Jul 2010 17:59:21 +0200 > From: Aro RANAIVONDRAMBOLA <ra...@ho...> > Subject: [Os-sim-support] OSSIM Source Code / Web Site > To: <os-...@li...> > Message-ID: <BAY...@ph...l> > Content-Type: text/plain; charset="iso-8859-1" > > > Hello, > - I would like to know if there is still a web site for OSSIM Project. When I go to www.ossim.net, I am rederected to Alienvault web site. > - Where can I obtain OSSIM Source Code ? > > Regards, > > razuki. > > -------------- next part -------------- > An HTML attachment was scrubbed... > > ------------------------------ > > Message: 4 > Date: Wed, 28 Jul 2010 11:12:44 -0500 > From: "Ritter, Nicholas" <Nic...@am...> > Subject: Re: [Os-sim-support] OSSIM Source Code / Web Site > To: "Aro RANAIVONDRAMBOLA" <ra...@ho...> > Cc: os-...@li... > Message-ID: <A31...@ma...v> > Content-Type: text/plain; charset="us-ascii" > > OSSIM is made by AlienVault. The code is available, I think, try looking > on the forums for info on how it is available. Try the following urls: > > > > For the Forums: > > > > https://www.alienvault.com/forum/ > > > > or the source git repo: > > > > http://www.assembla.com/code/os-sim/git/nodes?rev=master > > > > > > > > From: Aro RANAIVONDRAMBOLA [mailto:ra...@ho...] > Sent: Wednesday, July 28, 2010 10:59 AM > To: os-...@li... > Subject: [Os-sim-support] OSSIM Source Code / Web Site > > > > Hello, > - I would like to know if there is still a web site for OSSIM Project. > When I go to www.ossim.net, I am rederected to Alienvault web site. > - Where can I obtain OSSIM Source Code ? > > Regards, > > razuki. > > -------------- next part -------------- > An HTML attachment was scrubbed... > > ------------------------------ > > Message: 5 > Date: Wed, 28 Jul 2010 20:56:03 +0200 > From: Pablo <pa...@os...> > Subject: Re: [Os-sim-support] OSSIM Source Code / Web Site > To: "Ritter, Nicholas" <Nic...@am...> > Cc: Aro RANAIVONDRAMBOLA <ra...@ho...>, > os-...@li... > Message-ID: > <AANLkTi=zRSaUpZhc2BeWvEMyJDY_PYXhquHG=a1...@ma...> > Content-Type: text/plain; charset="iso-8859-1" > > Hi, now they have a git at assembla: > http://www.assembla.com/code/os-sim/git/nodes?rev=master > > 2010/7/28 Ritter, Nicholas <Nic...@am...> > > > OSSIM is made by AlienVault. The code is available, I think, try looking > > on the forums for info on how it is available. Try the following urls: > > > > > > > > For the Forums: > > > > > > > > https://www.alienvault.com/forum/ > > > > > > > > or the source git repo: > > > > > > > > http://www.assembla.com/code/os-sim/git/nodes?rev=master > > > > > > > > > > > > > > > > *From:* Aro RANAIVONDRAMBOLA [mailto:ra...@ho...] > > *Sent:* Wednesday, July 28, 2010 10:59 AM > > *To:* os-...@li... > > *Subject:* [Os-sim-support] OSSIM Source Code / Web Site > > > > > > > > Hello, > > - I would like to know if there is still a web site for OSSIM Project. When > > I go to www.ossim.net, I am rederected to Alienvault web site. > > - Where can I obtain OSSIM Source Code ? > > > > Regards, > > > > razuki. > > > > > > ------------------------------------------------------------------------------ > > The Palm PDK Hot Apps Program offers developers who use the > > Plug-In Development Kit to bring their C/C++ apps to Palm for a share > > of $1 Million in cash or HP Products. Visit us here for more details: > > http://p.sf.net/sfu/dev2dev-palm > > _______________________________________________ > > Os-sim-support mailing list > > Os-...@li... > > https://lists.sourceforge.net/lists/listinfo/os-sim-support > > > > > > > -- > Best regards, > -- > Pablo Rinc?n Crespo > Security researcher and developer > Open Information Security Foundation (OISF) > -------------- next part -------------- > An HTML attachment was scrubbed... > > ------------------------------ > > ------------------------------------------------------------------------------ > The Palm PDK Hot Apps Program offers developers who use the > Plug-In Development Kit to bring their C/C++ apps to Palm for a share > of $1 Million in cash or HP Products. Visit us here for more details: > http://p.sf.net/sfu/dev2dev-palm > > ------------------------------ > > _______________________________________________ > Os-sim-support mailing list > Os-...@li... > https://lists.sourceforge.net/lists/listinfo/os-sim-support > > > End of Os-sim-support Digest, Vol 35, Issue 1 > ********************************************* |
