diff options
author | shannonjr <shannonjr@pkgsrc.org> | 2006-01-31 10:46:31 +0000 |
---|---|---|
committer | shannonjr <shannonjr@pkgsrc.org> | 2006-01-31 10:46:31 +0000 |
commit | 68ec7443f1839671bea29ce59a96a4210bcf9512 (patch) | |
tree | 5796b42bc6674b3edd588071fca25f528ea45576 /security/apg | |
parent | aa2cd422bc90cd58aefa53d13281552f849b5388 (diff) | |
download | pkgsrc-68ec7443f1839671bea29ce59a96a4210bcf9512.tar.gz |
Update to 0.9.2. Changes:
- Get rid of the 1024 characters per line limitation (defined as per
the syslog RFC), since LML is not limited to parsing input from syslog
anymore.
- Handle events in Clamav logging format as well as syslog.
- Abstracted Squid chain regex to allow parsing of data directly
from Squid log files.
- Introduced support for openhostapd.
- Began expanding rulesets with additional_data and vendor-specific
classification data.
- Various ruleset updates and bug fixes.
Prelude-LML is a signature based log analyzer monitoring logfile and
received syslog messages for suspicious activity. It handle events
generated by a large set of components, including but not limited to:
BigIP, Grsecurity, Honeyd, ipchains, Netfilter, ipfw, Nokia ipso,
Nagios, Norton Antivirus Corporate Edition, NTsyslog, PAM, Portsentry,
Postfix, Proftpd, ssh, etc.
Diffstat (limited to 'security/apg')
0 files changed, 0 insertions, 0 deletions