Annotation of ports/security/sagan/pkg/DESCR, Revision 1.1.1.1
1.1 yason 1: Sagan is a multi-threaded, real time system and event log monitoring
2: system, but with a twist. Sagan uses a "Snort" like rule set for
3: detecting bad things happening on your network and/or computer systems.
4: If Sagan detects a "bad thing" happening, that event can be stored to a
5: Snort database (MySQL/PostgreSQL) and Sagan will attempt to correlate
6: the event with your Snort Intrusion Detection/Intrusion Prevention
7: (IDS/IPS) system. Sagan is basically a SIEM (Security Information & Log
8: Management) system.
CVSweb