Sourcefire(R) Launches Open Source Logging Tool to Assist Organizations with Network Security Management.Daemonlogger[TM] Enables Users to Simplify Logging of Network Traffic for Security Management and Forensic Analysis COLUMBIA, Md. -- Open source innovator and Snort An open source network intrusion detection system (NIDS) that is noted for its effectiveness. Developed by Martin Roesch, Snort can also be used just as a packet logger or packet sniffer. For more information, visit www.snort.org. See IDS. ([R])creator, Sourcefire, Inc. (Nasdaq:FIRE), a leader in network intrusion prevention See IPS and IDS. , today announced the availability of Daemonlogger[TM], an open source network traffic logging and "soft tap" tool. "Daemonlogger is the latest example of Sourcefire's commitment to the open source community," said Martin Roesch, the original author of Snort and CTO (Chief Technical Officer) The executive responsible for the technical direction of an organization. See CIO and salary survey. of Sourcefire. "With the open source release of Daemonlogger we're able to provide a handy and easy-to-use tool for two simple tasks in the classic mold of UNIX UNIX Operating system for digital computers, developed by Ken Thompson of Bell Laboratories in 1969. It was initially designed for a single user (the name was a pun on the earlier operating system Multics). tools that do a few things and do them well." In response to regulatory requirements for improving security, many organizations are implementing procedures to log and store all network traffic for periods of up to seven years. Proprietary log management and security management tools provide logging and storage as one of many features. Often the cost and complexity of implementing these solutions forces organizations to delay or cancel critical IT projects. Daemonlogger provides an alternative to proprietary products that can be implemented quickly with minimal cost and resource commitments. Daemonlogger was developed and released by Sourcefire to simplify the implementation of a traffic logging solution. Like its big brother Snort, the popular open source intrusion prevention system, Daemonlogger is at its core a packet sniffer See network analyzer. (networking, tool) packet sniffer - A network monitoring tool that captures data packets and decodes them using built-in knowledge of common protocols. Sniffers are used to debug and monitor networking problems. that is capable of passively capturing network traffic logs and writing it to disk in PCAP format. Users have the option to retransmit Verb 1. retransmit - transmit again channel, transmit, carry, impart, conduct, convey - transmit or serve as the medium for transmission; "Sound carries well over water"; "The airwaves carry the sound"; "Many metals conduct heat" packets on another network interface via Daemonlogger's "soft tap" feature. Users may configure which packets are logged using BPF BPF Berkeley Packet Filter BPF British Property Federation (UK) BPF Bonnes Pratiques de Fabrication (Good Manufacturing Practice) BPF British Plastics Federation BPF Band-Pass Filter filters to ensure that only the traffic that must be logged is collected. Further, users may configure how frequently the log file is rolled based on either the size of the log file or the age of the file. The program can also run in a "ringbuffer" mode where it will rotate through a set number of log files. For example, if a user decided to log the last 24 hour's worth of activity they could specify that the log files roll every hour and that a ringbuffer of 24 files will be maintained. Daemonlogger is licensed under the GNU General Public License A software license from the Free Software Foundation (FSF) that ensures every user receives the essential freedoms that define "free" software, which is free of restrictions (see free software). (GPL See GNU General Public License. 1. GPL - General Purpose Language. 2. GPL - ["A Sample Management Application Program in a Graphical Data-driven Programming language", A.L. Davis et al, Digest of Papers, Compcon Spring 81, Feb 1981, pp. 162-167]. ) version 2. The source code is freely available at www.snort.org. Under the GPL open source license, anyone may access, modify and redistribute the source code for Daemonlogger making it easy for users to modify the code to meet their specific needs or share enhancements and new features with the global community of network security professionals. About Sourcefire Sourcefire, Inc. (Nasdaq:FIRE), a leading provider of intelligence driven, open source network security solutions, is transforming the way organizations manage and minimize network security risks with its 3D Approach - Discover, Determine, Defend - to securing real networks in real-time. The company's network defense system unifies intrusion and vulnerability management technologies to provide customers with superior network security. Founded in 2001 by the creator of SNORT[R], Sourcefire is headquartered in Columbia, Maryland Columbia is a census-designated place and planned community in Howard County, Maryland, United States. It is a suburb of Baltimore, and, to a lesser degree, Washington, DC. It began with the idea that a city could enhance its residents' quality of life. and has been consistently recognized for its innovation and industry leadership by customers, media, and industry analysts alike - with more than 18 awards and accolades since January 2005 alone. Recently, Sourcefire was positioned in the Leaders Quadrant of Gartner's "Magic Quadrant for Network Intrusion Prevention System Appliances 2H06" report and the Sourcefire 3D System was named "Best Security Solution" at the 2006 SC Magazine Awards. At work in leading Fortune 1000 companies and government agencies, the names Sourcefire and founder Martin Roesch have grown synonymous with innovation and intelligence in network security. For more information about Sourcefire, please visit http://www.sourcefire.com SOURCEFIRE[R], SNORT[R], the Sourcefire logo, the Snort and Pig logo, SECURITY FOR THE REAL WORLD[TM], SOURCEFIRE DEFENSE CENTER[TM], SOURCEFIRE 3D[TM], RNA RNA: see nucleic acid. RNA in full ribonucleic acid One of the two main types of nucleic acid (the other being DNA), which functions in cellular protein synthesis in all living cells and replaces DNA as the carrier of genetic [TM] and certain other trademarks and logos are trademarks or registered trademarks of Sourcefire, Inc. in the United States and other countries. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion