[Ossec-list] Projects news

[daniel.cid at gmail.com (Daniel Cid)]

Hi everyone,

Just letting everyone know what is happening on the project.

1- We are adding a better configuration parser to ossec. It's going to be
much more strict then the one we have now (avoid problems like the one
reported by Kayvan Sylvan related to the e-mail alerts). We are also changing
some configuration names to be more clear (one example is
mail_notification to email_alert_level). If you have any suggestion,
please let us know.

2- The output of the alerts is going to be in the IDMEF format. We will
still support the currently format, but we plan to default to IDMEF.

3- A windows version for the agent is almost ready. If you have windows systems
on your network and would like to try it, please let us know. We are also
interested on windows logs (specially authentication related). We have a
small program that can extract your windows logs (just ask!). We
really need logs
to write better rules :)

4- We have the Italian and Polish translations completed. Thanks for Alberto
Furia and Dziankowski Krzysztof for the help.

5- Alberto is also working on a Debian package for the project.

6- Fixing the bugs reported lately.

This is basically what we are doing lately. If you can help or have suggestions
or comments, let us know. We plan to release a new version sometime at
the end of this month (or beginning of May).

Thanks,

--
Daniel B. Cid
dcid @ ( at ) ossec.net