I've just finished releasing version 3.0 alpha of Privateye. This release is rather bare-bones and lacks some of Privateye 2.2's flashier components, but that will come with the 3.0 beta and full releases.
This release showcases a complete overhaul of Privateye's codebase and a migration from PHP to C++. This migration should do only good things for Privateye. It will allow for faster processing and lower memory footprint, and eventually (around 3.5) threading support for handling multiple alerts simultaneously.... read more
During the SANS Log Summit, I got a chance to talk to a few people about Privateye, and the response was very good. The project even got mentioned in one of the presentations on the second day:
Many thanks to Chris Brenton for his interest, and for the free advertizing.
In response to the talk at SANS (about log management, not Privateye in general), I'd like to take a few seconds to clarify Privateye's most likely role in log and information analysis. So here it goes...... read more
In the interest of greater speed while processing logs (and because we eventually want threading, which is kind of nonexistant in PHP), the Privateye codebase is moving to C++ in version 3.0. Subversion is up and running, so running a subversion checkout will get you the latest in C++ source. Look for big config file changes as well, which will hopefully simplify configuring a Privateye instance and coding of new objects, as well as clean up the config file. Check out Tasks/C++ Port for an updated progress percentage.
As the first news posting, I'm very pleased to announce that Privateye has made the news. We're quite fortunate that John Cox, Senior Editor Network World, had attended a presentation that Graeme and I gave at NERCOMP in March; he interviewed us in order to write this article: http://www.networkworld.com/news/2006/052206-open-source-security.html