Discover the benefits of upgrading to OSSIM v4.0. The latest release includes over 200 enhancements including: new dynamic asset inventory, tools that simplify configuration, monitor system status and configure log collection, faster event processing and more.
Why Teams call analytics are critical to your entire business
Upgrading from OSSIM 3.1 to 4.0
1. OSSIM Made Simple: Upgrading 3.1 to
4.0
Byron DeLoach
Solutions Architect
2. Agenda
Why upgrade to 4.0?
New Dynamic Asset Inventory System
Faster event processing and reduced
storage requirements
Tools that simplify configuration, system
monitoring, and data collection
Tips for preventing data loss and downtime
during your upgrade
3. System backup
Pre-upgrade backup process
AV appliance included in corporate
backup strategy
Backup mysql database.
Example: mysqldump -u root –p(found in /etc/ossim/ossim_setup.conf) --all-databases > /root/all-
database.sql
Backup important configuration files.
tar czvf /root/etc-backup_20121004.tar.gz /etc/
4. Upgrading 3.1 to 4.0
Update to the latest version of 3.1
alienvault-update
Upgrade the system to 4.0
alienvault-update - -upgrade - -upgrade_to_alienvault4
5. OSSIM 4.0
Dynamic Asset Inventory
Vulnerability Assessment Tools
- OpenVAS 5 and support for Nessus 5
Passive Real-time Asset Detection
System
Periodic Asset Discovery
- Nmap OCS inventory and WMI
queries
6. Why Upgrade?
New base operating system
Faster event processing
Extended hardware support
Enhanced database performance
Improved data capturing tools
7. Why Upgrade?
New database design
Improved algorithms for event storage
and processing
Logger compression for greater event
storage
8. AlienVault Center
Tools to simplify configuration
Web based updates
Centralized health monitoring
Web based system configuration
9. Upgrading OSSIM from 3.1 to 4
Recap
Tips for preventing data loss and downtime
during your upgrade
New Dynamic Asset Inventory
Faster event processing and reduced
storage requirements
Tools that simplify configuration, monitor
system status and configure log collection