On Fri, 6 Mar 2015, Rainer Gerhards wrote:
2015-03-06 8:18 GMT+01:00 David Lang <[email protected]>:
I went to use omudpspoof on a ubuntu server (with the rsyslog 8.9 packages
from the PPA) and it looks like omudpspoof isn't part of any of the
packages.
let me check this. We usually try to build everything, except when we don't
find a necessary dependency. We have done of them as well, but I don't like
that too much as this means we need to keep up with their development.
should this be part of the base rsyslog packages, or should it be it's own
package? I'm thinking that it should be part of the base packages since I
don't think it doesn't bring in any additional dependencies. If it does,
then a separate package may be appropriate.
It needs libnet, so a separate package makes probably sense. I also hope
that it is used only in exceptional cases ;)
Yep, once again a top name brand IDS that can't manage to read the hostname
field in the log message and assigns it to a system based on the IP address it
comes from.
David Lang
_______________________________________________
rsyslog mailing list
http://lists.adiscon.net/mailman/listinfo/rsyslog
http://www.rsyslog.com/professional-services/
What's up with rsyslog? Follow https://twitter.com/rgerhards
NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of
sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE
THAT.
