-
Option to turn off log compression committed to FreeBSD-current
and FreeBSD-stable just prior to 4.5-RELEASE
-
Algorithms from MIT AI Lab work on determining "interestingness"
now being coded in SNOBOL
-
Drop-in replacement for syslogd, specifically tuned to allow
efficient log monitoring, now in the works. Will (hopefully) appear as
a "port" in the various BSD implementations and eventually (after auditing)
as the default logging daemon
-
Patterns already written to catch probes for many common
exploits, including QPopper bugs, IIS bugs, FTP and Telnet holes, etc.
-
Contributors and ideas wanted!
|