Edit the config files - see this PDF, for instance: http://www.ossim.net/docs/ossim_agent_hybinette.pdf
First hit on google for 'ossim dual nic' On Fri, Jun 19, 2009 at 09:50, Joe Heaton<[email protected]> wrote: > I've tried installing OSSIM, using the ISO download, but can't get it to use > the second NIC in the box I'm using. I want to do that, so I have one NIC > hosting the web interface, and the other doing the monitoring. Anyone have > any advice on this? > > Joe Heaton > Employment Training Panel > > -----Original Message----- > From: Matt Plahtinsky [mailto:[email protected]] > Sent: Friday, June 19, 2009 7:25 AM > To: NT System Admin Issues > Subject: Re: Vulnerability scanners > > OSSIM has nessus and they use the alien vault for the feed. Its free. > I would check it out. > > On 6/19/09, Miguel Gonzalez <[email protected]> wrote: >> >> OSSIM has a virtual appliance out of the box...have you tried that one? >> >> Miguel >> >> --- El vie, 19/6/09, Ziots, Edward <[email protected]> escribió: >> >>> De: Ziots, Edward <[email protected]> >>> Asunto: RE: Vulnerability scanners >>> Para: "NT System Admin Issues" <[email protected]> >>> Fecha: viernes, 19 junio, 2009 7:54 >>> Why not get Nessus with a personal >>> feed updated every 7 days, better than nadda. >>> >>> Also its not going to catch all vulnerabilites but most of >>> them... >>> >>> Z >>> >>> Edward Ziots >>> Network Engineer >>> Lifespan Organization >>> MCSE,MCSA,MCP+I, ME, CCA, Security +, Network + >>> [email protected] >>> Phone:401-639-3505 >>> >>> -----Original Message----- >>> From: Alex Eckelberry [mailto:[email protected]] >>> >>> Sent: Thursday, June 18, 2009 7:54 PM >>> To: NT System Admin Issues >>> Subject: RE: Vulnerability scanners >>> >>> It's just fine, but it's only MSFT... Adobe, Quicktime, >>> Winzip, Flash, etc., these are all current infection >>> vectors. Especially Adobe and Flash. >>> >>> -----Original Message----- >>> From: Joe Heaton [mailto:[email protected]] >>> >>> Sent: Thursday, June 18, 2009 4:44 PM >>> To: NT System Admin Issues >>> Subject: RE: Vulnerability scanners >>> >>> Has anyone used the Microsoft Baseline Security >>> Analyzer? I'm looking at that one right now... >>> >>> Joe Heaton >>> Employment Training Panel >>> >>> >>> -----Original Message----- >>> From: Joe Heaton [mailto:[email protected]] >>> Sent: Thursday, June 18, 2009 1:11 PM >>> To: NT System Admin Issues >>> Subject: RE: Vulnerability scanners >>> >>> I've tried installing OSSIM, and have not found it to be >>> easy. I'm trying to get it to recognize a second NIC, >>> for the monitoring, but can't seem to get it to work. >>> >>> Joe Heaton >>> Employment Training Panel >>> >>> >>> -----Original Message----- >>> From: Candee Vaglica [mailto:[email protected]] >>> Sent: Thursday, June 18, 2009 1:08 PM >>> To: NT System Admin Issues >>> Subject: Re: Vulnerability scanners >>> >>> I looked at OSSIM at one point. >>> It's free and easy. >>> ;) >>> >>> On Thu, Jun 18, 2009 at 4:00 PM, Joe Heaton<[email protected]> >>> wrote: >>> > Unfortunately, I don't have a budget for this, so I >>> was hoping for >>> > other Open Source tools, if any.. >>> > >>> > >>> > >>> > Joe Heaton >>> > >>> > Employment Training Panel >>> > >>> > >>> > >>> > From: Alex Eckelberry [mailto:[email protected]] >>> > Sent: Thursday, June 18, 2009 12:55 PM >>> > >>> > To: NT System Admin Issues >>> > Subject: RE: Vulnerability scanners >>> > >>> > >>> > >>> > Some choices: >>> > >>> > >>> > >>> > 1. Saint >>> > >>> > 2. Retina >>> > >>> > 3. Ours (Sunbelt Network Security Inspector) >>> > >>> > >>> > >>> > Alex >>> > >>> > >>> > >>> > >>> > >>> > From: Joe Heaton [mailto:[email protected]] >>> > Sent: Thursday, June 18, 2009 3:49 PM >>> > To: NT System Admin Issues >>> > Subject: Vulnerability scanners >>> > >>> > >>> > >>> > Since Nessus is no longer free, what is everyone using >>> for >>> > vulnerability scanning? >>> > >>> > >>> > >>> > Joe Heaton >>> > >>> > AISA >>> > >>> > Employment Training Panel >>> > >>> > 1100 J Street, 4th Floor >>> > >>> > Sacramento, CA 95814 >>> > >>> > (916) 327-5276 >>> > >>> > [email protected] >>> > >>> > >>> > >>> > >>> > >>> > >>> > >>> > >>> > >>> > >>> > >>> > >>> > >>> > >>> >>> ~ Finally, powerful endpoint security that ISN'T a resource >>> hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> >>> ~ >>> >>> >>> ~ Finally, powerful endpoint security that ISN'T a resource >>> hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> >>> ~ >>> >>> >>> ~ Finally, powerful endpoint security that ISN'T a resource >>> hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> >>> ~ >>> >>> >>> ~ Finally, powerful endpoint security that ISN'T a resource >>> hog! ~ >>> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> >>> ~ >>> >>> >>> ~ Finally, powerful endpoint security that ISN'T a resource >>> hog! ~ >>> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> >>> ~ >>> >>> >> >> >> >> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ >> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ >> >> > > -- > Sent from my mobile device > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
