Ping a Specific Port

Question

Josh Brower

Asked: 2009-06-05 18:38:12 +0800 CST2009-06-05 18:38:12 +0800 CST 2009-06-05 18:38:12 +0800 CST

OSSIM In Production Environment

772

I am trying to get some real-world feedback on OSSIM.

Are you using OSSIM in production?

If so, what has your overall experiance been?

How many nodes are in your enviroment?

Finally, what kind of bandwidth are you monitoring?

Thanks!

Anapologetos

1 Answers

Voted

cji · Answer 1 · 2009-06-24T11:02:04+08:00

Best Answer

cji

2009-06-24T11:02:04+08:002009-06-24T11:02:04+08:00

While I don't use OSSIM in an enterprise, here's some feedback I read recently on whether or not OSSIM is "enterprise ready"

http://www.andrewhay.ca/archives/912

This was in a response to OSSIM's post:

http://www.alienvault.com/blog/dk/personal/is_ossim_an_open_source_siem.html

And yet another post related to the thread from Anton Chuvakin:

http://chuvakin.blogspot.com/2009/06/why-no-open-source-siem-ever.html

From what I have read in all of that, it would seem (SIEM?) the product has some potential but some analysts don't think it's there yet. On the other hand, Dominic at alienvault/OSSIM mentioned some examples of large enterprises successfully using OSSIM in their environment.

Hope that helps or provides you with some more information to chew on. Good luck!

2

OSSIM In Production Environment

Ping a Specific Port

What port does SFTP use?

Resolve host name from IP address

How can I sort du -h output by size

Command line to list users in a Windows Active Directory group?

What's the command-line utility in Windows to do a reverse DNS look-up?

How to check if a port is blocked on a Windows machine?

What port should I open to allow remote desktop?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?