I know users have been requesting this for some time. You can get Puresecure to work with ASL pretty easily if you install the Pluspack. You can get it to work without the Pluspack by compiling on another machine and copying a handful of files. If there is enough interest I can dig up my old instructions on how to do this.
It would be nice if ASL had integrated IDS sensor functionality.
I find that Intrusion Detection has to be configured by somebody who knows what they're doing, to wade through the inevitable false positives. Helpful technology, but I can understand why Astaro did not rush it to market ("Hey, it's me again; your intrusion detection isn't working!").
I'd like to see some elemental honeypot technology. If you have Astaro spray a ficticious cleartext telnet router session (destination Astaro), and then -look at that; somebody's trying to use that same username and password to telnet into the Astaro -you have a good idea that there's a weasel on your LAN side.
You can do it now with Bash and netcat, if you know what you're doing...
I find that Intrusion Detection has to be configured by somebody who knows what they're doing, to wade through the inevitable false positives. Helpful technology, but I can understand why Astaro did not rush it to market ("Hey, it's me again; your intrusion detection isn't working!").
I'd like to see some elemental honeypot technology. If you have Astaro spray a ficticious cleartext telnet router session (destination Astaro), and then -look at that; somebody's trying to use that same username and password to telnet into the Astaro -you have a good idea that there's a weasel on your LAN side.
You can do it now with Bash and netcat, if you know what you're doing...
