*nix Thread, OSSIM - anyone tried it out and have some pointers? in Technical; OSSIM is a one-stop-shop for host and security monitoring - more details can be found at OSSIM (Open Source Security ...
7th October 2008, 09:23 AM #1
OSSIM - anyone tried it out and have some pointers?
OSSIM is a one-stop-shop for host and security monitoring - more details can be found at OSSIM (Open Source Security Information Management)
Anyway... it looks rather interesting, combining NESSUS, Nagios, OCS, Snare, Osiris...
The only problem is that the documentation is pretty poor IMHO.
Thanks to Ric_ from:
localzuk (7th October 2008)
IDG Tech News
7th October 2008, 10:21 AM #2
Hmm... I'll take a look at this, as it would be useful for centralising logging, and other monitoring - something I've been tasked with for these data protection rules.
10th October 2008, 02:48 PM #3
I've had a play with it and it looks quite useful. I've got it set up with snare agent on one of our servers, sending windows events to the central location. I've also got it doing the OCS-NG bit, and a few other bits and pieces.
One thing - it is *very* resource hungry! I gave it a VM machine with 2 processors, 2GB ram and 24GB hard disk and it ran out of memory after about an hour. I'll keep on playing and hopefully figure out a good amount of memory for it.
13th October 2008, 12:33 PM #4
I did notice that... I threw a little more RAM at it (4GB IIRC) and it still ate it all.
Originally Posted by localzuk
13th October 2008, 12:36 PM #5
I had it crashing with too little memory with 2GB so increased to 3.5GB and it then seemed to be happy. I think it is just one or 2 tasks that eat all the memory, as it only shoots up occasionally.
Originally Posted by Ric_
I've got it working now with snare and ocs. Just figuring out the remaining bits now...
Last Post: 20th January 2007, 10:34 PM
By Kyle in forum How do you do....it?
Last Post: 23rd April 2006, 09:54 PM
Last Post: 16th March 2006, 10:14 AM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)