DEBFIND Suche nach Debian-Paketen

Suchplatform für Softwarepakete und Archive Debian-basierter Linux-Distributionen

beta ! Diese website wird noch weiterentwickelt.

Liste aller Kategorien/Sektionen | Suchmaske | Haftungsausschluß

Paketbeschreibung


Paketnamehlbrw
Beschreibungassistant to help make new rules to HLBR
Archiv/RepositoryOffizielles Debian Archiv squeeze (main)
Version0.2.4-1
Sektionadmin
Prioritätoptional
Installierte Größe100 Byte
Hängt ab vonhlbr, iwatch
Empfohlene Pakete
PaketbetreuerJoao Eriberto Mota Filho
Quelle
Paketgröße6994 Byte
Prüfsumme MD5f21f60565a3bbcb86ae367ecdee17051
Prüfsumme SHA1604c0d2562c34e40e6bebc40d6496623922c1221
Prüfsumme SHA256a3e8feae95569e3179fe65c7fe3d74d4ebbf2769d64425049fa15188caf58843
Link zum Herunterladenhlbrw_0.2.4-1_all.deb
Ausführliche BeschreibungHLBRW is an acronym to Hogwash Light BR Watch. The intent is provide a tool to help make rules to HLBR (http://hlbr.sf.net). In others words, HLBRW was made to be used by HLBR users needing make new rules (it will require some expertise about HLBR, TCP/IP protocol suite and regular expressions). . HLBRW is a script started by iwatch (a system events watch program available at http://iwatch.sourceforge.net) when the HLBR events log is modified. The concept is very single: if the HLBR log was modified, then a knew attack was blocked. But the attacker can make others subsequent actions unknown by HLBR. Then the iwatch running as daemon will start HLBRW and it will co-ordinate a tcpdump session to record the posterior traffic generated by attacker IP for some minutes. If the recorded traffic isn't relevant (without a push in TCP or another relevant protocol), the created file will be deleted. Based in the recorded traffic, the network security manager will can make new rules. . HLBRW is part of the HLBR project, an Intrusion Prevention System (IPS) used in firewall systems.


Impressum
Linux is a registered trademark of Linus Torvalds