17740 – The Analysis Console for Intrusion Databases (ACID)

Bug 17740 - The Analysis Console for Intrusion Databases (ACID)

Summary: The Analysis Console for Intrusion Databases (ACID)

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	New packages (show other bugs)
Hardware:	x86 Linux

Importance:	High enhancement (vote)
Assignee:	Gentoo Web-apps project

URL:	http://acidlab.sourceforge.net/
Whiteboard:
Keywords:	EBUILD

Depends on:	28238
Blocks:
	Show dependency tree

Reported:	2003-03-18 01:11 UTC by Robert Cole
Modified:	2004-08-28 17:28 UTC (History)
CC List:	7 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
ebuild (acid-0.9.6_beta23.ebuild,2.53 KB, text/plain) 2003-09-09 01:21 UTC, Daniel Black (RETIRED)	Details
Changelog (Changelog,334 bytes, text/plain) 2003-09-09 01:22 UTC, Daniel Black (RETIRED)	Details
files/perms.sql (perms.sql,718 bytes, text/plain) 2003-09-09 01:23 UTC, Daniel Black (RETIRED)	Details
instructions that I prepared for someone else - may be of use (Lab2enhanced.html,17.93 KB, text/html) 2003-10-04 06:58 UTC, Daniel Black (RETIRED)	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Robert Cole 2003-03-18 01:11:41 UTC

The Analysis Console for Intrusion Databases (ACID) is a PHP-based analysis
engine to search and process a database of security events generated by various
IDSes, firewalls, and network monitoring tools.

Reproducible: Always
Steps to Reproduce:
1.
2.
3.




I'm working on docs for gentoo as an IDS/Stealth logger and this package would
be helpful to that end and the gentoo hardening project.

Comment 1 Alex Veber 2003-06-08 12:18:19 UTC

ok, me and coredumb are working on ebuilds for ACID and its deps.

Comment 2 Robin Johnson archtester

2003-06-19 01:27:25 UTC

Coredumb: please handle this as it seems you are doing some of it already.

Comment 3 Robin Johnson archtester

2003-07-03 01:15:11 UTC

Pending the webapp eclass.

Comment 4 Daniel Black (RETIRED) gentoo-dev

2003-09-09 01:21:55 UTC

Created attachment 17315 [details]
ebuild

Comment 5 Daniel Black (RETIRED) gentoo-dev

2003-09-09 01:22:26 UTC

Created attachment 17316 [details]
Changelog

Comment 6 Daniel Black (RETIRED) gentoo-dev

2003-09-09 01:23:47 UTC

Created attachment 17317 [details]
files/perms.sql

SQL file to set permissions on acid tables in snort database. Only tested on
postgresql so far

Comment 7 Daniel Black (RETIRED) gentoo-dev

2003-09-09 01:29:29 UTC

I've tested this on postgresql. Database abstraction is done through adodb (bug 28238). Any 
problems I'm more than willing to refine and further test this. If I get time I'll check the use of 
phplot rather than jpgraph. I think GD is the main dependancy though. This uses Robin's 
fantastic webapp eclass.

Comment 8 Daniel Black (RETIRED) gentoo-dev

2003-10-04 06:58:22 UTC

Created attachment 18734 [details]
instructions that I prepared for someone else - may be of use

these are some general instructions I made for the installation. Its a bit
surperflous in places but hopefully of use. If I get time I'll refine it
into a
propper gentoo document. time...alas where is all the time? ;-).

Comment 9 Daniel Black (RETIRED) gentoo-dev

2003-10-04 07:04:49 UTC

Had a post submission thought about the database dependancies - they shouldn't
be there as the databases can exist on a different machine. Database abstraction
is done through the adodb so there realy isn't a dependancy.

Comment 10 Stuart Herbert (RETIRED) gentoo-dev

2004-03-28 16:15:57 UTC

Coredumb - this bug's been open so long now ... are you still working on this?

Thanks,
Stu

Comment 11 Robin Johnson archtester

2004-08-07 13:22:35 UTC

sorting bugs

Comment 12 Renat Lumpau (RETIRED) gentoo-dev

2004-08-28 17:28:10 UTC

ACID is already in portage: net-analyzer/acid