scanlogd 2.2.6 review
Downloadscanlogd project is a system daemon which attempts to log all portscans of a host to the syslog, in a secure fashion. This release
|
|
scanlogd project is a system daemon which attempts to log all portscans of a host to the syslog, in a secure fashion.
This release of scanlogd can be built with support for one of several packet capture interfaces. In addition to the raw socket interface on Linux (which does not require any libraries), scanlogd is now aware of libnids and libpcap.
The use of libpcap alone is discouraged. If you're on a system other than Linux and/or want to monitor the traffic of an entire network at once, you should be using libnids in order to handle fragmented IP packets.
Requirements:
libnids
libpcap
libnet
What's New in This Release:
The source code has been modified to use sysconf(_SC_CLK_TCK) instead of CLK_TCK when _SC_CLK_TCK is known to be available or CLK_TCK is not (needed for glibc 2.3.90+).
scanlogd 2.2.6 keywords