SAMHAIN v3.0.13 Released (bug fixes) Released
The Samhain host-based intrusion detection system (HIDS) provides file integrity checking and log file monitoring/analysis, as well as rootkit detection, port monitoring, detection of rogue SUID executables, and hidden processes.
Samhain been designed to monitor multiple hosts with potentially different operating systems, providingcentralized logging and maintenance, although it can also be used as standalone application on a single host.
Samhain is an open-source multiplatform application for POSIX systems (Unix, Linux, Cygwin/Windows).
- The detection of a nonfunctional /dev/kmem has been improved (this problem caused compile failures with the –with-kcheck option on some Linux distros).
- A regression in the GrowingLogFiles policy has been fixed that caused spurious reports for files with frequent writes.
Download SAMHAIN v3.0.13