Sguil Status
One of you wrote recently to ask about the status of the open source Network Security Monitoring suite called Sguil. You noticed the last release of Sguil (0.6.1) occurred in February 2006. I can assure you Sguil is not dead. In fact, just last week I wrote an article for a new BSD magazine about installing the sensor and server components of Sguil 0.7.0 (from CVS on FreeBSD 7.0.
To keep up with development read the sguil-devel mailing list and visit #snort-gui on irc.freenode.net.
I expect to see Sguil 0.7.0 released before 13 February 2008 to avoid hitting the two year mark.
To keep up with development read the sguil-devel mailing list and visit #snort-gui on irc.freenode.net.
I expect to see Sguil 0.7.0 released before 13 February 2008 to avoid hitting the two year mark.
Comments
Great news about Sguil. I was really thinking that the project was dead. Any idea when 0.70 will be released?
When I read this post I was immediately interested in finding out more about a BSD magazine. Do you have any details on the magazine that you can share?
Hi Richard,
Great news about Sguil. I was really thinking that the project was dead. Any idea when 0.70 will be released?
When I read this post I was immediately interested in finding out more about a BSD magazine. Do you have any details on the magazine that you can share?
The project is far from dead. I just have a lot of things going on right now and the release just keeps getting pushed back. For those interested, CVS is stable and is being used in production at various places. The problem is with documentation. There have been a number of changes, so the INSTALL and UPGRADE docs need to be updated to reflect the changes. Documentation is one of my least favorite things.
Bammkkkk
I've been reading up on sguil deployment and have a few questions. Regarding connecting an additional client to the VM. As well as building an additional sensor, also to connect to the VM. I'm trying to demonstrate its capability as a multi pronged monitor with a sensor inside the network and one on the perimeter.
Any help would be greatly appreciated.
charles dot tendell at gmail dot com