Security
Subscribe to this site with RSS
Top 5 open source security tools in the enterprise
With thousands of open source security packages available, choices can be confusing. Here's the short list of tools that are getting real-world successful deployments.
In the late 1990s, organizations began looking seriously at open source network management and security products. Although some had previously been installed without corporate approval, a fundamental shift occurred within the enterprise as organizations began searching for alternative solutions to commercial network management and security products.
Related links
No results were found for your search.
Your query is too restrictive.
You might want to try: security
Story tools
Sponsored by:
E-Mail article
|
|
Print article
|
|
Contact author
|
|
AIM article
|
del.icio.us |
Reddit
|
Digg
|
Stumble
|
Slashdot It!
|
Realizing the considerable cost savings and superior security benefits of open source, companies that were moving to open source in other areas, such as migrating Microsoft Internet Information Server Web servers to the open source Apache Web server, also began considering tools such as the network management software Nagios to replace proprietary products such as HP Openview. While many open source security tools are available, this story reviews the top five tools in production in enterprise environments.
Tool #1: OSSEC HIDS
I’ve selected OSSEC HIDS as the No. 1 open source tool due to its recent rapid growth in the enterprise. OSSEC HIDS is a rapidly evolving open source project that offers the first ever open source host intrusion detection and prevention system, developed by Daniel Cid. The OSSEC HIDS project has been gaining widespread use and is quickly being deployed within organizations around the world as a method of protecting systems at the host level after attacks have made it past network defenses.
The OSSEC HIDS project team has ported the tool to all major operating system platforms including Windows, MacOSX, HP-UX, Solaris, FreeBSD, OpenBSD and Linux.
OSSEC is capable of using the local system’s firewall to dynamically block attack attempts on a mission-critical server. The OSSEC HIDS agent can add attacking IP addresses to the /etc/hosts.deny file, or block packets to and from them using the host’s firewall. Firewalls that OSSEC currently supports include IPtables on Linux, pf on OpenBSD and FreeBSD, ipsec for AIX, ipfilter for Solaris, FreeBSD and NetBSD and ipfw for FreeBSD. If configured to do so, OSSEC will e-mail administrators informing them of the anomalous activity.
Note: Register to have your user name appear; otherwise your comment will show up as "Anonymous."
*Anonymous comments will only appear once they are approved by the moderator.
• Dell puts Linux and Atom in Vostro PCs
• Mozilla names best Firefox 3 add-ons
• Torvalds: Fed up with the 'security circus'
• Dell Latitude ON - big win for Linux
• Open source advocates hail appeals court ruling
LinuxWorld Conference and Expo San Francisco, August 4-7, 2008.
Linux Plumbers Conference Portland, OR, Sept. 16-19, 2008.
FreedomHEC Santa Monica, November 8-9, 2008.
Top 5 open source security tools in the enterprise By Anonymous on March 19, 2007, 9:07 pm Reply | Read entire comment Great story! I am glad to see tools like Ossec, Bro and Nagions getting some attention. They deserve it!
All comments (1)