Host Based Intrusion Detection - Samhain
Jan 26, 2011, 04:34 (0 Talkback[s])
Re-Imagining Linux Platforms to Meet the Needs of Cloud Service Providers
[ Thanks to Falko
Timme for this link. ]
"This article describes in some detail how to install
Samhain, the host based intrusion detection system. For further
information regarding Samhain, please see
"I am not going to ramble on about what host based intrusion
detection is or why to use it, as there are plenty of articles
already covering those subjects. This article is just to show you
how to get Samhain up and running in a client / server
configuration with a couple bells and whistles thrown in for
"I highly recommend you read the entire guide before you start,
it will most certainly help.
"There is a lot of swapping between client and server as I try
my best to confuse you, so stay sharp!
"You will need all the required build tools installed as we are
going to compile Samhain. Here is a quick refresher:
yum groupinstall "Development Tools"