TuckLive.org

The Developers over at Skynet-Solutions have just released EasyIDS 0.4.  This is an excellent turn-key solution for someone wanting to learn about open source security programs up to medium size businesses needing network security.  I was fortunate to be included in the beta testing and I think you’ll like what the developers have added and/or improved.  Also, a forum has been set up for the community HERE and be sure to check out the screenshots HERE.  I have posted the changelog below.

0.4 Changelog

• Designed around Centos 5.4 cd1 with updates.
• Upgraded Snort to 2.8.5.1.
• Upgraded Snort rulesets to 2.8.
• Upgraded BASE to customized version 1.4.4.
• Upgraded ntop to 3.3.8.
• Added Arpwatch 2.1a13.
• Upgraded Nmap to 4.11.
• Added stunnel 4.15.
• Added network traffic graphs (Daily, Weekly, etc).
• Added system usage graphs (Daily, Weekly, etc).
• Modified Snort performance graphs (Daily, Weekly, etc).
• Web selectable management/monitoring network NICs.
• Bridging support for inline placement if 3+ NICs.
• Multiple remote sensor support with Stunnel encryption.
• Added auto restart of failed services with notification script.
• Added customized branding and themes.
• Added upgrade script for future enhancements & replace Snort rule updates script.
• Added basic user with read-only privileges (user:user,password:easyids).
• Added web-based system log viewer.
• Added web-based nmap scanner.
• Added e-mail alerts on ethernet/ip address changes.
• Added specific enabling/disabling of individual ruleset rules.
• Added snort_rules.conf file for inclusion of enabled rulesets.