headers
amine amine | 30 Jan 10:54
Picon
Gravatar

Subscription

------------------------------------------------------------------------------
Try before you buy = See our experts in action!
The most comprehensive online learning library for Microsoft developers
is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3,
Metro Style Apps, more. Free future releases when you subscribe now!
http://p.sf.net/sfu/learndevnow-dev2
_______________________________________________
Os-sim-support mailing list
Os-sim-support <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/os-sim-support
Permalink | Reply | 0 comments |
headers
Kaushal Shriyan | 13 Jan 01:49
Picon

"Timeout Expired"

Hi,

I am using Analysis -> Vulnerabilties -> Scan Jobs and running the default Test for a gateway server which has public IP . I get "Timeout Expired"

Please suggest/guide.

Thanks

Kaushal
------------------------------------------------------------------------------
Protect Your Site and Customers from Malware Attacks
Learn about various malware tactics and how to avoid them. Understand 
malware threats, the impact they can have on your business, and how you 
can protect your company and customers by using code signing.
http://p.sf.net/sfu/oracle-sfdevnl
_______________________________________________
Os-sim-support mailing list
Os-sim-support <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/os-sim-support
Permalink | Reply | 0 comments |
headers
Pablo Hörtner | 18 Nov 18:31
Picon
Favicon

Ubuntu build of OSSIM

[ I hope this is still the correct mailinglist (as there is no traffic at all - but on contrib there is even
_less_ traffic). ]

Hi everybody!

I am trying to build packages for Ubuntu. Is there a particular reason why such packages do not yet exist?
Anyway, while building from source I noticed some things.

I compiled the binaries the "Debian way" (ie. Using dpkg-buildpackage resp. debuild) and everything
worked fine. You need to install the following packages: libglib2.0-dev libgda2-dev libgnet-dev
python-all-dev dpatch libssl-dev uuid-dev

As a result I now have the following files in my source directory:
.git
os-sim
ossim_2.3.1-9_all.deb
ossim_2.3.1-9.dsc
ossim_2.3.1-9_i386.build
ossim_2.3.1-9_i386.changes
ossim_2.3.1-9.tar.gz
ossim-contrib_2.3.1-9_all.deb
ossim-framework_2.3.1-9_all.deb
ossim-framework-daemon_2.3.1-9_all.deb
ossim-mysql_2.3.1-9_all.deb
ossim-server_2.3.1-9_i386.deb
ossim-utils_2.3.1-9_all.deb
README

I will test them, rebuild for 64-bit and let you know.

Now, my questions/considerations:

First, is the old cvs-repository still available? I would like to compare the git-repo with the old sources.

Second, the debian/changelog needs to be adopted to the correct syntax. How do you usually build .deb
packages? [Two blanks before the date and just one before the author!]

Third, are those sources different from those used for AlienVault Professional. Does anyone know?

Fourth, is there a special reason why your OSSIM-packages are not part of the official Debian GNU/Linux release?

Fifth, do you use an automated build daemon?

Thank you for your work and best regards,
Pablo
------------------------------------------------------------------------------
Beautiful is writing same markup. Internet Explorer 9 supports
standards for HTML5, CSS3, SVG 1.1,  ECMAScript5, and DOM L2 & L3.
Spend less time writing and  rewriting code and more time creating great
experiences on the web. Be a part of the beta today
http://p.sf.net/sfu/msIE9-sfdev2dev
Permalink | Reply | 0 comments |
headers
Aro RANAIVONDRAMBOLA | 25 Aug 15:45
Picon

is there a recent doc ( 2009 - 2010 ) about ossim installation

Hello,
My project at university is about compiling and running OSSIM. I must compile OSSIM source code on Debian lenny. But the doc version is old. the last update was in 2004 ... So many patch failed ( for example I cannot patch snort with ossim patch. It fails ).
is there a recent doc ( 2009 - 2010 ) about ossim installation.
Otherwise what can I do ? ( my teacher do not want I make "lazy install" ( using debian package provided by alienvault )
Thanks for your help

> From: os-sim-support-request <at> lists.sourceforge.net
> Subject: Os-sim-support Digest, Vol 35, Issue 1
> To: os-sim-support <at> lists.sourceforge.net
> Date: Wed, 28 Jul 2010 18:56:33 +0000
>
> Send Os-sim-support mailing list submissions to
> os-sim-support <at> lists.sourceforge.net
>
> To subscribe or unsubscribe via the World Wide Web, visit
> https://lists.sourceforge.net/lists/listinfo/os-sim-support
> or, via email, send a message with subject or body 'help' to
> os-sim-support-request <at> lists.sourceforge.net
>
> You can reach the person managing the list at
> os-sim-support-owner <at> lists.sourceforge.net
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of Os-sim-support digest..."
>
>
> Today's Topics:
>
> 1. Problem with Cisco Pix (Houcem HACHICHA)
> 2. ossim agent does not receive traffic (Aro RANAIVONDRAMBOLA)
> 3. OSSIM Source Code / Web Site (Aro RANAIVONDRAMBOLA)
> 4. Re: OSSIM Source Code / Web Site (Ritter, Nicholas)
> 5. Re: OSSIM Source Code / Web Site (Pablo)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Wed, 23 Jun 2010 20:01:34 +0100
> From: Houcem HACHICHA <houcem.hachicha <at> gmail.com>
> Subject: [Os-sim-support] Problem with Cisco Pix
> To: os-sim-support <at> lists.sourceforge.net
> Message-ID:
> <AANLkTin2RITRTwOP0x78lBtlAtmOD2saMWobMAWCgZC3 <at> mail.gmail.com>
> Content-Type: text/plain; charset="iso-8859-1"
>
> Hi guys,
>
> I performed a OSSIM 2.2 fresh installation, with no cards at promisc mode. I
> needed to feed it with CISCO PIX logs.
> So I redirected those logs using syslog (UDP:514), to the ossim server I
> just installed. Running TCPdump on the server shows that those logs are
> indeed recieved by the OSSIM server. I activated cisco-pix pluguin using
> (only) ossim-setup on the server side.
>
> Back to the web frontend, events from CISCO-Pics are not pouring in :(
>
> Am I missing something here? Does the plugin need more configuration? Do I
> need to send the syslog traffic throught another port/protocol? Do I need to
> add the CISCO Pix to the assets list or something?
>
>
> Please help
> --
> Kind regards
>
> Houcem HACHICHA
> -------------- next part --------------
> An HTML attachment was scrubbed...
>
> ------------------------------
>
> Message: 2
> Date: Fri, 25 Jun 2010 10:51:40 +0200
> From: Aro RANAIVONDRAMBOLA <razuki <at> hotmail.fr>
> Subject: [Os-sim-support] ossim agent does not receive traffic
> To: <os-sim-support <at> lists.sourceforge.net>
> Message-ID: <BAY146-w59CE2DDBF51D3833E90E1CA4C70 <at> phx.gbl>
> Content-Type: text/plain; charset="iso-8859-1"
>
>
>
> Hi,
> I installed ossim-server and ossim-agent on a host A and I installed snare ( a sensor ) on a host B. A and B are linked by a SWITCH.
> the problem : the agent which is on A does not receive the traffic ( the events ) from host B.
> thanks for your help
>
>
> _________________________________________________________________
> Vous voulez regarder la TV directement depuis votre PC ? C'est tr?s simple avec Windows 7
> http://clk.atdmt.com/FRM/go/229960614/direct/01/
> -------------- next part --------------
> An HTML attachment was scrubbed...
>
> ------------------------------
>
> Message: 3
> Date: Wed, 28 Jul 2010 17:59:21 +0200
> From: Aro RANAIVONDRAMBOLA <razuki <at> hotmail.fr>
> Subject: [Os-sim-support] OSSIM Source Code / Web Site
> To: <os-sim-support <at> lists.sourceforge.net>
> Message-ID: <BAY146-w1236B881AFF55343A52448A4A80 <at> phx.gbl>
> Content-Type: text/plain; charset="iso-8859-1"
>
>
> Hello,
> - I would like to know if there is still a web site for OSSIM Project. When I go to www.ossim.net, I am rederected to Alienvault web site.
> - Where can I obtain OSSIM Source Code ?
>
> Regards,
>
> razuki.
>
> -------------- next part --------------
> An HTML attachment was scrubbed...
>
> ------------------------------
>
> Message: 4
> Date: Wed, 28 Jul 2010 11:12:44 -0500
> From: "Ritter, Nicholas" <Nicholas.Ritter <at> americantv.com>
> Subject: Re: [Os-sim-support] OSSIM Source Code / Web Site
> To: "Aro RANAIVONDRAMBOLA" <razuki <at> hotmail.fr>
> Cc: os-sim-support <at> lists.sourceforge.net
> Message-ID: <A31DBDD0D3C9454B8B14AE7DFD8A8EB606888EAB <at> mail3.ds.atv>
> Content-Type: text/plain; charset="us-ascii"
>
> OSSIM is made by AlienVault. The code is available, I think, try looking
> on the forums for info on how it is available. Try the following urls:
>
>
>
> For the Forums:
>
>
>
> https://www.alienvault.com/forum/
>
>
>
> or the source git repo:
>
>
>
> http://www.assembla.com/code/os-sim/git/nodes?rev=master
>
>
>
>
>
>
>
> From: Aro RANAIVONDRAMBOLA [mailto:razuki <at> hotmail.fr]
> Sent: Wednesday, July 28, 2010 10:59 AM
> To: os-sim-support <at> lists.sourceforge.net
> Subject: [Os-sim-support] OSSIM Source Code / Web Site
>
>
>
> Hello,
> - I would like to know if there is still a web site for OSSIM Project.
> When I go to www.ossim.net, I am rederected to Alienvault web site.
> - Where can I obtain OSSIM Source Code ?
>
> Regards,
>
> razuki.
>
> -------------- next part --------------
> An HTML attachment was scrubbed...
>
> ------------------------------
>
> Message: 5
> Date: Wed, 28 Jul 2010 20:56:03 +0200
> From: Pablo <pablo <at> ossim.net>
> Subject: Re: [Os-sim-support] OSSIM Source Code / Web Site
> To: "Ritter, Nicholas" <Nicholas.Ritter <at> americantv.com>
> Cc: Aro RANAIVONDRAMBOLA <razuki <at> hotmail.fr>,
> os-sim-support <at> lists.sourceforge.net
> Message-ID:
> <AANLkTi=zRSaUpZhc2BeWvEMyJDY_PYXhquHG=a1cE0-m <at> mail.gmail.com>
> Content-Type: text/plain; charset="iso-8859-1"
>
> Hi, now they have a git at assembla:
> http://www.assembla.com/code/os-sim/git/nodes?rev=master
>
> 2010/7/28 Ritter, Nicholas <Nicholas.Ritter <at> americantv.com>
>
> > OSSIM is made by AlienVault. The code is available, I think, try looking
> > on the forums for info on how it is available. Try the following urls:
> >
> >
> >
> > For the Forums:
> >
> >
> >
> > https://www.alienvault.com/forum/
> >
> >
> >
> > or the source git repo:
> >
> >
> >
> > http://www.assembla.com/code/os-sim/git/nodes?rev=master
> >
> >
> >
> >
> >
> >
> >
> > *From:* Aro RANAIVONDRAMBOLA [mailto:razuki <at> hotmail.fr]
> > *Sent:* Wednesday, July 28, 2010 10:59 AM
> > *To:* os-sim-support <at> lists.sourceforge.net
> > *Subject:* [Os-sim-support] OSSIM Source Code / Web Site
> >
> >
> >
> > Hello,
> > - I would like to know if there is still a web site for OSSIM Project. When
> > I go to www.ossim.net, I am rederected to Alienvault web site.
> > - Where can I obtain OSSIM Source Code ?
> >
> > Regards,
> >
> > razuki.
> >
> >
> > ------------------------------------------------------------------------------
> > The Palm PDK Hot Apps Program offers developers who use the
> > Plug-In Development Kit to bring their C/C++ apps to Palm for a share
> > of $1 Million in cash or HP Products. Visit us here for more details:
> > http://p.sf.net/sfu/dev2dev-palm
> > _______________________________________________
> > Os-sim-support mailing list
> > Os-sim-support <at> lists.sourceforge.net
> > https://lists.sourceforge.net/lists/listinfo/os-sim-support
> >
> >
>
>
> --
> Best regards,
> --
> Pablo Rinc?n Crespo
> Security researcher and developer
> Open Information Security Foundation (OISF)
> -------------- next part --------------
> An HTML attachment was scrubbed...
>
> ------------------------------
>
> ------------------------------------------------------------------------------
> The Palm PDK Hot Apps Program offers developers who use the
> Plug-In Development Kit to bring their C/C++ apps to Palm for a share
> of $1 Million in cash or HP Products. Visit us here for more details:
> http://p.sf.net/sfu/dev2dev-palm
>
> ------------------------------
>
> _______________________________________________
> Os-sim-support mailing list
> Os-sim-support <at> lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/os-sim-support
>
>
> End of Os-sim-support Digest, Vol 35, Issue 1
> *********************************************
------------------------------------------------------------------------------
Sell apps to millions through the Intel(R) Atom(Tm) Developer Program
Be part of this innovative community and reach millions of netbook users 
worldwide. Take advantage of special opportunities to increase revenue and 
speed time-to-market. Join now, and jumpstart your future.
http://p.sf.net/sfu/intel-atom-d2d
_______________________________________________
Os-sim-support mailing list
Os-sim-support <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/os-sim-support
Permalink | Reply | 0 comments |
headers
Austin G. Smith | 24 Aug 20:29
Favicon

Best Practice for Nagios

I am just curious about nagios configuration-

 

Is it better to scan and let OSSIM import the hosts or is it okay to configure this package manually?  I would prefer to configure manually if I have no control over the groups OSSIM creates.

 

Thank you,

Austin

------------------------------------------------------------------------------
Sell apps to millions through the Intel(R) Atom(Tm) Developer Program
Be part of this innovative community and reach millions of netbook users 
worldwide. Take advantage of special opportunities to increase revenue and 
speed time-to-market. Join now, and jumpstart your future.
http://p.sf.net/sfu/intel-atom-d2d
_______________________________________________
Os-sim-support mailing list
Os-sim-support <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/os-sim-support
Permalink | Reply | 0 comments |
headers
Austin G. Smith | 17 Aug 17:23
Favicon

Issues with ISO / Installation

I have recently installed the latest version of 32 bit OSSIM from the ISO available for download from the main site.  After 3 downloads and 4 installs, it appears the ossim install is is not being setup correctly.

 

To note, on the install, the partitioning screen kept looping and would not let us get past that step.  Even after deleting, recreating, auto creation or anything.  Only a custom install will get OSSIM installed.

 

After installation, the web interface is not available, however Apache is installed.  When running ossim-reconfig, I receive the following error:

 

ln: creating symbolic link `/usr/share/ossim/www/conf/index.php': No such file or directory

Error open log file No such file or directory at /usr/bin/ossim-reconfig line 2039.

 

The /usr/share/ossim/www directory exists, however conf does not.

 

It appears something is wrong with the iso / installation process.  Is there a known work around?  I would really love to get the latest version up and running…

 

Thank you,

Austin Smith

------------------------------------------------------------------------------
This SF.net email is sponsored by 

Make an app they can't live without
Enter the BlackBerry Developer Challenge
http://p.sf.net/sfu/RIM-dev2dev 
_______________________________________________
Os-sim-support mailing list
Os-sim-support <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/os-sim-support
Permalink | Reply | 0 comments |
headers
Helder | 16 Aug 19:48
Picon

Customize Dashboard

Hi

I would like to learn how to customize better my dashboard in OSSIM. Anyone has some manual?

Thanks

--
Helder

"O destino não é uma questão de sorte, é uma questão de escolha; Não é algo a se esperar, é algo a se conquistar" - William Jennings Bryan 

------------------------------------------------------------------------------
This SF.net email is sponsored by 

Make an app they can't live without
Enter the BlackBerry Developer Challenge
http://p.sf.net/sfu/RIM-dev2dev 
_______________________________________________
Os-sim-support mailing list
Os-sim-support <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/os-sim-support
Permalink | Reply | 0 comments |
headers
Aro RANAIVONDRAMBOLA | 13 Aug 18:31
Picon

help about installation

Hello,
I retrieved source code of ossim from here http://www.assembla.com/code/os-sim/git/nodes?rev=master
I would like to run it on CentOS. But I am confused. I did not find a clear Documentation about how to configure, compile and run the program. I tried ./configure but the file does not exist. Could someone send me a doc or the steps to install the solution. I do not know how starting installation and configuration ...

Regards,

razuki
------------------------------------------------------------------------------
This SF.net email is sponsored by 

Make an app they can't live without
Enter the BlackBerry Developer Challenge
http://p.sf.net/sfu/RIM-dev2dev 
_______________________________________________
Os-sim-support mailing list
Os-sim-support <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/os-sim-support
Permalink | Reply | 0 comments |
headers
Aro RANAIVONDRAMBOLA | 3 Aug 17:21
Picon

Questions about characteristics

Hello everybody,
I would like to know if :
- communication between elements can be encrypted now ?
- there is authentication between agent server ?
- external storage ( NAS / SAN / other ... ) is possible ?
- there is a timestamp ?
Thanks for your help,

ikuzar 
------------------------------------------------------------------------------
The Palm PDK Hot Apps Program offers developers who use the
Plug-In Development Kit to bring their C/C++ apps to Palm for a share
of $1 Million in cash or HP Products. Visit us here for more details:
http://p.sf.net/sfu/dev2dev-palm
_______________________________________________
Os-sim-support mailing list
Os-sim-support <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/os-sim-support
Permalink | Reply | 1 comment |
headers
Aro RANAIVONDRAMBOLA | 29 Jul 14:55
Picon

normalization

Hi,
I found in the documentation that "Agent" is hosted in the sensor, while "collector" in Server.
On the one hand, The documentation show that Agent makes "collecting" operation and normalize information before sending it to the server.
On the other hand, it says that "collector" makes the normalization operation.
-- Does both make the normalization ?
-- I do not find any explanation about Normalization in the documentation, could you tell me where can I get it ?
Thanks for your help,

razuki.
------------------------------------------------------------------------------
The Palm PDK Hot Apps Program offers developers who use the
Plug-In Development Kit to bring their C/C++ apps to Palm for a share
of $1 Million in cash or HP Products. Visit us here for more details:
http://p.sf.net/sfu/dev2dev-palm
_______________________________________________
Os-sim-support mailing list
Os-sim-support <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/os-sim-support
Permalink | Reply | 0 comments |
headers
Aro RANAIVONDRAMBOLA | 28 Jul 17:59
Picon

OSSIM Source Code / Web Site

Hello,
- I would like to know if there is still a web site for OSSIM Project. When I go to www.ossim.net, I am rederected to Alienvault web site.
- Where can I obtain OSSIM Source Code ?

Regards,

razuki.
------------------------------------------------------------------------------
The Palm PDK Hot Apps Program offers developers who use the
Plug-In Development Kit to bring their C/C++ apps to Palm for a share
of $1 Million in cash or HP Products. Visit us here for more details:
http://p.sf.net/sfu/dev2dev-palm
_______________________________________________
Os-sim-support mailing list
Os-sim-support <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/os-sim-support
Permalink | Reply | 2 comments |

Gmane