Random thoughts, tips & tricks about Slackware-Linux, Lego and Star Wars

Archive for the 'Monitoring' Category

August 26th, 2011 by Niels Horn in , , |

A few days ago ntop 4.1.0 was released so it was time to update my SlackBuild script again
This release is focused on stability and speed, solving some of the problems the 4.0.x series had.
Some "older" protocols have been removed (but may come back in rewritten form in future versions), making space for newer [...]

July 27th, 2011 by Niels Horn in , |

Nagios 3.3.1 was released a few days ago and since it is a program I like a lot, I immediately started working on the updated SlackBuild script.
What is new
The complete ChangeLog for version 3.3.1 can be found here. Basically, it contains several improvements and bug-fixes "under the hood", but it also has some new enhancements [...]

February 13th, 2011 by Niels Horn in , , , |

The year 2011 started with changes and lots of work, so I have been without time to work on most private projects, including the SlackBuild scripts I maintain.
But things are clearing up and I found some time this weekend to update some scripts - the ones most people asked me about
Actually, this was [...]

December 26th, 2010 by Niels Horn in , , |

December has been a busy month until now and probably will continue like this…
But today is Christmas, a good day to give some new packages to my visitors
Recently version 1.6 of lbench was released, a benchmark utility.
And last week version 2.9.0.3 of snort, the Intrusion Detection software, and version 0.5 of daq, the [...]

November 20th, 2010 by Niels Horn in , , , |

The beginning of this month a new version of Snort was released - 2.9.0.1. The companion Data Acquisition library (daq) was also upgraded to version 0.3.
I updated my SlackBuilds and installed the new versions on my server. I waited a bit before releasing the packages as there had been some reports on a new "Unknown [...]

November 11th, 2010 by Niels Horn in , |

After my post about the "Unknown record type 104″ problem in Barnyard2, I received several e-mails recently about a new error that started popping up:
ERROR: Unknown record type read: 110
I had not seen this one myself, but did some quick investigating and found out that it is a new record type in Snort 2.9.0
This new [...]

October 11th, 2010 by Niels Horn in ,

When experimenting with the new Snort version 2.9.0 I ran into some problems with Barnyard2. It would simply crash with errors like:
ERROR: Unknown record type read: 104
Fatal Error, Quitting..
I started looking for information on the internet (Google is our friend…), and found out that at least I was not alone
Similar problems
Basically, I found [...]

October 10th, 2010 by Niels Horn in , , |

A few days ago Snort 2.9.0 was released. The official announcement can be read here.
This new version brings some essential changes to Snort that needed special attention.
New dependencies
libdnet is a "simplified, portable interface to several low-level networking routines" and has a SlackBuild on SlackBuilds.org.
daq is a new "Data Acquisition library" that can use several [...]

October 9th, 2010 by Niels Horn in , , |

Just over a month ago I wrote about the release of Nagios 3.2.2 and now it's time to update already
Nagios announced the release of version 3.2.3 a few days ago, resolving a few bugs. According to the announcement updating your installation is recommended.
Since the ChangeLog is quite short, I copy it here:

Fixes problem where [...]

September 23rd, 2010 by Niels Horn in , ,

Introduction
I have set up Snort a few times on a network to check for possible intrusion attempts. It is a very powerful tool to discover these attempts, based on rules that are frequently updated. Snort is a so-called "Intrusion Detection System" (=IDS), that can also be setup as a "Intrusion Prevention System".
Recently I needed Snort [...]