[ 源代码: samhain ]
软件包:samhain(4.1.4-2 以及其他的)
Data integrity and host intrusion alert system
Samhain is an integrity checker and host intrusion detection system that can be used on single hosts as well as large, UNIX-based networks. It supports central monitoring as well as powerful (and new) stealth features to run undetected on memory using steganography.
Main features
* Complete integrity check + uses cryptographic checksums of files to detect modifications, + can find rogue SUID executables anywhere on disk, and * Centralized monitoring + native support for logging to a central server via encrypted and authenticated connections * Tamper resistance + database and configuration files can be signed + logfile entries and e-mail reports are signed + support for stealth operation
其他与 samhain 有关的软件包
|
|
|
|
-
- dep: debconf (>= 1.2.9)
- Debian 配置管理系统
- 或者 debconf-2.0
- 本虚包由这些包填实: cdebconf, cdebconf-udeb, debconf
-
- dep: libauparse0 (>= 1:2.2.1)
- Dynamic library for parsing security auditing
-
- dep: libc6 (>= 2.27)
- GNU C 语言运行库:共享库
同时作为一个虚包由这些包填实: libc6-udeb
-
- dep: libpcre3
- 与旧版 Perl 5 兼容的正则表达式库 - 运行文件
-
- dep: libprelude28
- Security Information and Events Management system [ Base library ]