Showing posts with label alienvault. Show all posts
Showing posts with label alienvault. Show all posts

Wednesday, November 13, 2013

How to follow AlienVault OSSIM with Zabbix ?


During Zabbix games, one of the things that I learned was how to monitor my AlienVault OSSIM system.

By default OSSIM is tracing and auditing all the traffic by its own firewall. You should open the correct port on the firewall.

# vi /etc/ossim/firewall_include

-A INPUT -p tcp -m state --state NEW -m tcp --dport 10050 -j ACCEPT

# ossim-reconfig


Posted by at No comments:
Labels: ,

Friday, July 19, 2013

AlienVault OSSIM 4.3 has been published.

I'm not completly sure who are using and loving the AlienVault OSSIM community edition but I'm always a fan of this open source software.

Today a new major release V4.3 has been published.

It contains many great changes. First of all, the GUI has a new view. I'm using it since 2 days , I upgraded from an old release and I didnt received any error message during the installation. Completly silent and on-the-fly upgrade.


Posted by at No comments:
Labels: ,

Monday, July 15, 2013

Release file expired, ignoring http://data.alienvault.com/mirror/squeeze_security/dists/squeeze/updates/Release (invalid since 242d 14h 31min 53s)

I just finished the installation of AlienVault v4.2.0 Community edition and I was trying to update the OS. When I sent the classic Debian update command " #apt-get update" , it sent me back this message :)

Release file expired, ignoring http://data.alienvault.com/mirror/squeeze_security/dists/squeeze/updates/Release (invalid since 242d 14h 31min 53s)


It's very easy to solve this. Just a misreading. All you have to do is using the Alienvault's update command instead of classic Ubuntu command.

#alienvault-update

Posted by at No comments:
Labels: ,
Subscribe to: Posts (Atom)