prelude-lml_1.0.0-5.3ubuntu2_amd64.deb


Advertisement

Description

prelude-lml - Security Information Management System [ Log Agent ]

Distribution: Ubuntu 16.04 LTS (Xenial Xerus)
Repository: Ubuntu Universe amd64
Package name: prelude-lml
Package version: 1.0.0
Package release: 5.3ubuntu2
Package architecture: amd64
Package type: deb
Installed size: 692 B
Download size: 130.99 KB
Official Mirror: archive.ubuntu.com
Prelude is a Universal "Security Information Management" (SIM) system. Its goals are performance and modularity. It is divided in two main parts : - the Prelude sensors, responsible for generating alerts, such as snort sensor, featuring a signature engine, plugins for protocol analysis, and intrusion detection plugins, and the Prelude log monitoring lackey. - the Prelude report server, collecting data from Prelude sensors, and generating user-readable reports. Prelude-LML is a signature based log analyzer monitoring logfile and received syslog messages for suspicious activity. It handle events generated by a large set of components, including but not limited to: Apache, BigIP, Grsecurity, Honeyd, ipchains, Netfilter, ipfw, Nagios, NTsyslog, NuFW, PAM, Portsentry, Postfix, Proftpd, ssh, etc.

Alternatives

    Download

    Source package: prelude-lml

    Install Howto

    1. Update the package index:
      # sudo apt-get update
    2. Install prelude-lml deb package:
      # sudo apt-get install prelude-lml

    Files

    • /etc/init.d/prelude-lml
    • /etc/prelude-lml/plugins.rules
    • /etc/prelude-lml/prelude-lml.conf
    • /etc/prelude-lml/ruleset/apc-emu.rules
    • /etc/prelude-lml/ruleset/arbor.rules
    • /etc/prelude-lml/ruleset/arpwatch.rules
    • /etc/prelude-lml/ruleset/asterisk.rules
    • /etc/prelude-lml/ruleset/bonding.rules
    • /etc/prelude-lml/ruleset/cacti-thold.rules
    • /etc/prelude-lml/ruleset/checkpoint.rules
    • /etc/prelude-lml/ruleset/cisco-asa.rules
    • /etc/prelude-lml/ruleset/cisco-common.rules
    • /etc/prelude-lml/ruleset/cisco-css.rules
    • /etc/prelude-lml/ruleset/cisco-ips.rules
    • /etc/prelude-lml/ruleset/cisco-router.rules
    • /etc/prelude-lml/ruleset/cisco-vpn.rules
    • /etc/prelude-lml/ruleset/clamav.rules
    • /etc/prelude-lml/ruleset/dell-om.rules
    • /etc/prelude-lml/ruleset/f5-bigip.rules
    • /etc/prelude-lml/ruleset/grsecurity.rules
    • /etc/prelude-lml/ruleset/honeyd.rules
    • /etc/prelude-lml/ruleset/honeytrap.rules
    • /etc/prelude-lml/ruleset/httpd.rules
    • /etc/prelude-lml/ruleset/ipchains.rules
    • /etc/prelude-lml/ruleset/ipfw.rules
    • /etc/prelude-lml/ruleset/kojoney.rules
    • /etc/prelude-lml/ruleset/linksys-wap11.rules
    • /etc/prelude-lml/ruleset/modsecurity.rules
    • /etc/prelude-lml/ruleset/ms-cluster.rules
    • /etc/prelude-lml/ruleset/ms-sql.rules
    • /etc/prelude-lml/ruleset/nagios.rules
    • /etc/prelude-lml/ruleset/navce.rules
    • /etc/prelude-lml/ruleset/netapp-ontap.rules
    • /etc/prelude-lml/ruleset/netfilter.rules
    • /etc/prelude-lml/ruleset/netscreen.rules
    • /etc/prelude-lml/ruleset/ntsyslog.rules
    • /etc/prelude-lml/ruleset/openhostapd.rules
    • /etc/prelude-lml/ruleset/pam.rules
    • /etc/prelude-lml/ruleset/pcanywhere.rules
    • /etc/prelude-lml/ruleset/pcre.rules
    • /etc/prelude-lml/ruleset/portsentry.rules
    • /etc/prelude-lml/ruleset/postfix.rules
    • /etc/prelude-lml/ruleset/ppp.rules
    • /etc/prelude-lml/ruleset/proftpd.rules
    • /etc/prelude-lml/ruleset/qpopper.rules
    • /etc/prelude-lml/ruleset/rishi.rules
    • /etc/prelude-lml/ruleset/selinux.rules
    • /etc/prelude-lml/ruleset/sendmail.rules
    • /etc/prelude-lml/ruleset/shadow-utils.rules
    • /etc/prelude-lml/ruleset/single.rules
    • /etc/prelude-lml/ruleset/snare_windows.rules
    • /etc/prelude-lml/ruleset/sonicwall.rules
    • /etc/prelude-lml/ruleset/spamassassin.rules
    • /etc/prelude-lml/ruleset/squid.rules
    • /etc/prelude-lml/ruleset/ssh.rules
    • /etc/prelude-lml/ruleset/su.rules
    • /etc/prelude-lml/ruleset/sudo.rules
    • /etc/prelude-lml/ruleset/suhosin.rules
    • /etc/prelude-lml/ruleset/tripwire.rules
    • /etc/prelude-lml/ruleset/vigor.rules
    • /etc/prelude-lml/ruleset/vpopmail.rules
    • /etc/prelude-lml/ruleset/webmin.rules
    • /etc/prelude-lml/ruleset/wu-ftp.rules
    • /usr/bin/prelude-lml
    • /usr/include/prelude-lml/prelude-lml.h
    • /usr/lib/x86_64-linux-gnu/prelude-lml/debug.so
    • /usr/lib/x86_64-linux-gnu/prelude-lml/pcre.so
    • /usr/share/doc/prelude-lml/AUTHORS
    • /usr/share/doc/prelude-lml/HACKING.README
    • /usr/share/doc/prelude-lml/NEWS.gz
    • /usr/share/doc/prelude-lml/README
    • /usr/share/doc/prelude-lml/README.Debian
    • /usr/share/doc/prelude-lml/changelog.Debian.gz
    • /usr/share/doc/prelude-lml/copyright

    Changelog

    2015-08-05 - Iain Lane <iain@orangesquash.org.uk> prelude-lml (1.0.0-5.3ubuntu2) wily; urgency=medium * No-change rebuild against new libicu

    2014-09-08 - Logan Rosen <logan@ubuntu.com> prelude-lml (1.0.0-5.3ubuntu1) utopic; urgency=medium * Use autotools-dev to update config.{sub,guess} for new arches.

    2014-08-30 - Andreas Metzler <ametzler@debian.org> prelude-lml (1.0.0-5.3) unstable; urgency=medium * Non-maintainer upload. * Brown paper bag release. * Really add pkg-config to b-d.

    2014-08-30 - Andreas Metzler <ametzler@debian.org> prelude-lml (1.0.0-5.2) unstable; urgency=medium * Non-maintainer upload. * Configure with ICU_CFLAGS="$(shell pkg-config --cflags icu-i18n)" and ICU_LIBS="$(shell pkg-config --libs icu-i18n)" instead of letting ./configure use icu-config. The latter prints out icu's compile-time cflags including -fPIE (see #759792) which causes a build-error on amd64 et al. Closes: #759247

    2014-08-15 - Andreas Metzler <ametzler@debian.org> prelude-lml (1.0.0-5.1) unstable; urgency=medium * Non-maintainer upload. * Rebuild against GnuTLS 3. Drop build-dependency on libgnutls-dev, instead rely on libprelude-dev pulling in GnuTLS (unused by prelude-lml) and gcrypt development packages.

    2013-07-02 - Pierre Chifflier <pollux@debian.org> prelude-lml (1.0.0-5) unstable; urgency=low * Bump Standards Version to 3.9.4 * Refreshed quilt patches * Fix FTBFS with eglibc 2.17 (Closes: #701411)

    2012-06-18 - Pierre Chifflier <pollux@debian.org> prelude-lml (1.0.0-4) unstable; urgency=high * Disable tests to avoid build failure on on kFreeBSD (Closes: #677852) * Urgency high, RC bug

    2012-06-16 - Pierre Chifflier <pollux@debian.org> prelude-lml (1.0.0-3) unstable; urgency=high * Trigger rebuild (Closes: #676028) * Bump Standards Version to 3.9.3 * Switch to dpkg-source 3.0 (quilt) format * Switch to DH version 9 - Enable hardening options - Enable multi-arch * Urgency high, RC bugs

    2011-05-02 - Pierre Chifflier <pollux@debian.org> prelude-lml (1.0.0-2) unstable; urgency=low * Fix FTBFS with undefined symbol lt__PROGRAM__LTX_preloaded_symbols (Closes: #622046) * Bump Standards Version to 3.9.2 * Ensure init script messages have newlines (Closes: #574595) * Exit init script gracefuly if profile does not exist (Closes: #616178)

    2010-03-18 - Pierre Chifflier <pollux@debian.org> prelude-lml (1.0.0-1) unstable; urgency=low * Imported Upstream version 1.0.0

    Advertisement
    Advertisement