Monday, April 2, 2007
Sourcefire® Launches Open Source Logging Tool to Assist Organizations with Network Security Management
Sourcefire® Launches Open Source Logging Tool to Assist Organizations with Network Security Management
Press release
Daemonlogger™ Enables Users to Simplify Logging of Network Traffic for Security Management and Forensic Analysis
COLUMBIA, Md.-- Open source innovator and Snort® creator, Sourcefire, Inc. (Nasdaq:FIRE), a leader in network intrusion prevention, today announced the availability of Daemonlogger™, an open source network traffic logging and “soft tap” tool.
“Daemonlogger is the latest example of Sourcefire’s commitment to the open source community,” said Martin Roesch, the original author of Snort and CTO of Sourcefire. “With the open source release of Daemonlogger we’re able to provide a handy and easy-to-use tool for two simple tasks in the classic mold of UNIX tools that do a few things and do them well.”
In response to regulatory requirements for improving security, many organizations are implementing procedures to log and store all network traffic for periods of up to seven years. Proprietary log management and security management tools provide logging and storage as one of many features. Often the cost and complexity of implementing these solutions forces organizations to delay or cancel critical IT projects. Daemonlogger provides an alternative to proprietary products that can be implemented quickly with minimal cost and resource commitments.
Daemonlogger was developed and released by Sourcefire to simplify the implementation of a traffic logging solution. Like its big brother Snort, the popular open source intrusion prevention system, Daemonlogger is at its core a packet sniffer that is capable of passively capturing network traffic logs and writing it to disk in PCAP format. Users have the option to retransmit packets on another network interface via Daemonlogger’s “soft tap” feature.
Users may configure which packets are logged using BPF filters to ensure that only the traffic that must be logged is collected. Further, users may configure how frequently the log file is rolled based on either the size of the log file or the age of the file. The program can also run in a “ringbuffer” mode where it will rotate through a set number of log files. For example, if a user decided to log the last 24 hour’s worth of activity they could specify that the log files roll every hour and that a ringbuffer of 24 files will be maintained.
Daemonlogger is licensed under the GNU General Public License (GPL) version 2. The source code is freely available at www.snort.org. Under the GPL open source license, anyone may access, modify and redistribute the source code for Daemonlogger making it easy for users to modify the code to meet their specific needs or share enhancements and new features with the global community of network security professionals.
About Sourcefire
Sourcefire, Inc. (Nasdaq:FIRE), a leading provider of intelligence driven, open source network security solutions, is transforming the way organizations manage and minimize network security risks with its 3D Approach - Discover, Determine, Defend - to securing real networks in real-time. The company's network defense system unifies intrusion and vulnerability management technologies to provide customers with superior network security. Founded in 2001 by the creator of SNORT®, Sourcefire is headquartered in Columbia, Maryland and has been consistently recognized for its innovation and industry leadership by customers, media, and industry analysts alike - with more than 18 awards and accolades since January 2005 alone. Recently, Sourcefire was positioned in the Leaders Quadrant of Gartner's "Magic Quadrant for Network Intrusion Prevention System Appliances 2H06" report and the Sourcefire 3D System was named "Best Security Solution" at the 2006 SC Magazine Awards. At work in leading Fortune 1000 companies and government agencies, the names Sourcefire and founder Martin Roesch have grown synonymous with innovation and intelligence in network security. For more information about Sourcefire, please visit http://www.sourcefire.com
SOURCEFIRE®, SNORT®, the Sourcefire logo, the Snort and Pig logo, SECURITY FOR THE REAL WORLD™, SOURCEFIRE DEFENSE CENTER™, SOURCEFIRE 3D™, RNA™ and certain other trademarks and logos are trademarks or registered trademarks of Sourcefire, Inc. in the United States and other countries.
Contacts
Sourcefire, Inc., Columbia
Investor Contact:
Tania Almond, 410-423-1919
or
Media Contact:
Welz & Weisel Communications
Tony Welz, 703-218-3555 x226
Press release
Daemonlogger™ Enables Users to Simplify Logging of Network Traffic for Security Management and Forensic Analysis
COLUMBIA, Md.-- Open source innovator and Snort® creator, Sourcefire, Inc. (Nasdaq:FIRE), a leader in network intrusion prevention, today announced the availability of Daemonlogger™, an open source network traffic logging and “soft tap” tool.
“Daemonlogger is the latest example of Sourcefire’s commitment to the open source community,” said Martin Roesch, the original author of Snort and CTO of Sourcefire. “With the open source release of Daemonlogger we’re able to provide a handy and easy-to-use tool for two simple tasks in the classic mold of UNIX tools that do a few things and do them well.”
In response to regulatory requirements for improving security, many organizations are implementing procedures to log and store all network traffic for periods of up to seven years. Proprietary log management and security management tools provide logging and storage as one of many features. Often the cost and complexity of implementing these solutions forces organizations to delay or cancel critical IT projects. Daemonlogger provides an alternative to proprietary products that can be implemented quickly with minimal cost and resource commitments.
Daemonlogger was developed and released by Sourcefire to simplify the implementation of a traffic logging solution. Like its big brother Snort, the popular open source intrusion prevention system, Daemonlogger is at its core a packet sniffer that is capable of passively capturing network traffic logs and writing it to disk in PCAP format. Users have the option to retransmit packets on another network interface via Daemonlogger’s “soft tap” feature.
Users may configure which packets are logged using BPF filters to ensure that only the traffic that must be logged is collected. Further, users may configure how frequently the log file is rolled based on either the size of the log file or the age of the file. The program can also run in a “ringbuffer” mode where it will rotate through a set number of log files. For example, if a user decided to log the last 24 hour’s worth of activity they could specify that the log files roll every hour and that a ringbuffer of 24 files will be maintained.
Daemonlogger is licensed under the GNU General Public License (GPL) version 2. The source code is freely available at www.snort.org. Under the GPL open source license, anyone may access, modify and redistribute the source code for Daemonlogger making it easy for users to modify the code to meet their specific needs or share enhancements and new features with the global community of network security professionals.
About Sourcefire
Sourcefire, Inc. (Nasdaq:FIRE), a leading provider of intelligence driven, open source network security solutions, is transforming the way organizations manage and minimize network security risks with its 3D Approach - Discover, Determine, Defend - to securing real networks in real-time. The company's network defense system unifies intrusion and vulnerability management technologies to provide customers with superior network security. Founded in 2001 by the creator of SNORT®, Sourcefire is headquartered in Columbia, Maryland and has been consistently recognized for its innovation and industry leadership by customers, media, and industry analysts alike - with more than 18 awards and accolades since January 2005 alone. Recently, Sourcefire was positioned in the Leaders Quadrant of Gartner's "Magic Quadrant for Network Intrusion Prevention System Appliances 2H06" report and the Sourcefire 3D System was named "Best Security Solution" at the 2006 SC Magazine Awards. At work in leading Fortune 1000 companies and government agencies, the names Sourcefire and founder Martin Roesch have grown synonymous with innovation and intelligence in network security. For more information about Sourcefire, please visit http://www.sourcefire.com
SOURCEFIRE®, SNORT®, the Sourcefire logo, the Snort and Pig logo, SECURITY FOR THE REAL WORLD™, SOURCEFIRE DEFENSE CENTER™, SOURCEFIRE 3D™, RNA™ and certain other trademarks and logos are trademarks or registered trademarks of Sourcefire, Inc. in the United States and other countries.
Contacts
Sourcefire, Inc., Columbia
Investor Contact:
Tania Almond, 410-423-1919
or
Media Contact:
Welz & Weisel Communications
Tony Welz, 703-218-3555 x226
Labels: it-security, networking
Subscribe to Posts [Atom]