Sunday, January 22, 2012

Security Onion 20120123 now available!


Security Onion 20120123 is now available!  This resolves the following issues:

Issue 191: Update NSM scripts to control Bro
Issue 202: If user selects only one interface, configure Bro as standalone

Notes
If you're only monitoring a single network interface, this update will configure Bro for standalone mode which will greatly increase performance!


New Users
New users can download and install the 20111103 ISO image using the instructions here.  The step marked "Install Security Onion updates" will automatically install this update.

In-place Upgrade
Existing Security Onion users can perform an in-place upgrade using the following command (if you're behind a proxy, remember to set your proxy variables as described in the FAQ):
sudo -i "curl -L http://sourceforge.net/projects/security-onion/files/security-onion-upgrade.sh > ~/security-onion-upgrade.sh && bash ~/security-onion-upgrade.sh"

Screenshots
Upgrade Process
NSM scripts now control Bro

Thanks
Thanks to Seth Hall of the Bro project for his tuning suggestion!
Thanks to Richard Bejtlich for his suggestion of updating the NSM scripts to control Bro!

Feedback
If you have any questions, please join our mailing list and ask away!
http://groups.google.com/group/security-onion

Toolsmith Tool of the Year
If you're a fan of Security Onion, please vote for it for 2011 Toolsmith Tool of the Year!
http://holisticinfosec.blogspot.com/2011/12/choose-2011-toolsmith-tool-of-year.html

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.