Source: prelude-lml
Section: admin
Priority: optional
Maintainer: Pierre Chifflier <pollux@debian.org>
Uploaders: Thomas Andrejak <thomas.andrejak@gmail.com>
Build-Depends: debhelper (>=10),
    libev-dev,
    libprelude-dev (>=3.1.0),
    libpcre3-dev,
    libicu-dev,
    pkg-config,
Standards-Version: 4.1.2
Homepage: https://www.prelude-siem.org/
Vcs-Browser: https://anonscm.debian.org/git/collab-maint/prelude-lml.git
Vcs-Git: https://anonscm.debian.org/git/collab-maint/prelude-lml.git

Package: prelude-lml
Architecture: any
Depends: ${shlibs:Depends}, ${misc:Depends}, prelude-lml-rules (>=3.1.0-1)
Recommends: system-log-daemon
Description: Security Information Management System [ Log Agent ]
 Prelude is a Universal "Security Information Management" (SIM) system.
 Its goals are performance and modularity. It is divided in two main
 parts :
  - the Prelude sensors, responsible for generating alerts, such as
    snort sensor, featuring a signature engine, plugins for
    protocol analysis, and intrusion detection plugins, and the Prelude
    log monitoring lackey.
  - the Prelude report server, collecting data from Prelude sensors,
    and generating user-readable reports.
 .
 Prelude-LML is a signature based log analyzer monitoring logfile and
 received syslog messages for suspicious activity. It handle events
 generated by a large set of components, including but not limited to:
 Apache, BigIP, Grsecurity, Honeyd, ipchains, Netfilter, ipfw, Nagios,
 NTsyslog, NuFW, PAM, Portsentry, Postfix, Proftpd, ssh, etc.
