[prev in list] [next in list] [prev in thread] [next in thread]
List: prelude-devel
Subject: [prelude-devel] [ANNOUNCE]: prelude-correlator 0.9.0-beta6
From: Yoann Vandoorselaere <yoann.v () prelude-ids ! com>
Date: 2009-07-09 16:04:11
Message-ID: 1247155452.11383.0.camel () arwen
[Download RAW message or body]
We are pleased to announce the availability of Prelude-Correlator
0.9.0-beta6.
Prelude-Correlator serves to correlate, in real time, the multiple
events received by Prelude. Several isolated alerts, generated from
different probes, can thus trigger a single correlation alert should the
events be related.
------[ CHANGES ]------
- Provide a default configuration file, and fixes the prelude-correlator
--config option.
- A rare exception could occur when IDMEF:Set() was called with
an empty list/tuple as the value argument.
- Normalize libprelude logging through our own log callback (only
enabled if libprelude >= 0.9.24 is installed).
- The DShield plugin didn't report any events since address loaded
from the DShield database weren't correctly normalized.
- Automatic download + reloading of the DShield database was fixed.
- DShield generated alerts now include additional details.
- Make it possible to specify your own DShield database file, and to
prevent automatic download. This is useful on system with no direct
internet access.
- Handle both standard installation, and EGG installation method (in EGG
mode, configuration and data files are self contained).
- Introduce a new plugin logging mechanism.
- Add some utility method to the Timer class.
- Make it possible for plugin to define a 'signal' method that will
get called when prelude-correlator handle a signal (can be used to
perform special handling before exit, statistics or debugging
purposes).
------[ SUPPORT ] ------
Improving Prelude is costly, but you can help! We are looking for
organizations that find Prelude useful and wish to contribute back.
Commercial support contracts for Prelude are available, and they help
finance continued maintenance. PreludeIDS Technologies, a privately held
company, is currently funding Prelude maintenance.
------[ DOWNLOAD ]------
http://www.prelude-ids.com/development/download/
------[ CHECKSUM ]------
MD5 : 29f3c3ce5baf43586ec4a4841494cdd0
SHA1 : b75784b69e4a28dc71c836633826e98f1b28da55
SHA256 :
e9e7f05450fc9b5421a7c162660832e881b92e8c4a1ad44c0cba7f3e8c28a298
------[ OpenPGP key ]------
gpg --keyserver wwwkeys.pgp.net --recv-keys 0x23D2FAC3
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)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=T6nr
-----END PGP SIGNATURE-----
--
Yoann Vandoorselaere <yoann.v@prelude-ids.com>
_______________________________________________
Prelude-devel site list
Prelude-devel@prelude-ids.org
http://lists.prelude-ids.org/mailman/listinfo/prelude-devel
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic