Sagan 0.2.2 – Multi-threaded event-log monitoring

Sagan is multi-threaded, real-time system and event-log monitoring software, but with a twist. It uses a “Snort” like rule set for detecting nefarious events happening on your network and/or computer systems. If Sagan detects a “bad thing” happening, it can do a number of things with that information.

For example, Sagan can store the information to a Snort MySQL database for viewing with utilities like Snorby, it can send e-mail(s) about the event to the appropriate personnel, it can store to a Prelude back end, it can also spawn external utilities, as well as numerous other things.
Sagan can also correlate the events with your Intrusion Detection/Intrusion Prevention (IDS/IPS) system and basically acts like an SIEM (Security Information & Log Management) system.
apt for cygwin

cyg-apt is like apt and makes installing cygwin packages a lot more friendly. I’ve always disliked the clunky setup program that comes with cygwin so this is a really nice improvement.

assuming you have cygwin, wget and python installed

cd /bin
chmod a+rx cyg-apt
cyg-apt setup
cyg-apt update

for more detailed instructions see cygwin-setup


Bash script to backup my configs (dotfiles)

I needed some script to take care of my config files and put them in a single directory. So here it is.


# Display All Hidden Dot Files In a Directory
# ls -a | egrep "^\." >

DESTINATION="/storage/dotfiles"  # do not use a trailing slash (/)

FreeBSD install VIM text editor

Q. Quick question – How do I install VIM text editor for my FreeBSD server? Currently it has old version of vi. I like vim as it is a highly configurable text editor and efficient one.

A. VIM (Vi IMproved ) is not installed by default under FreeBSD. Vim is a text editor that is upwards compatible to Vi. It can be used to edit all kinds of plain text. It is especially useful for editing programs. You can install vim binary package or use FreeBSD’s ports system.

Task: Install vim binary package

Type the following command to install vim lite version:
# pkg_add -r -v vim-lite

