KPSAD Publisher's description
from Joe Innes
KPSAD is a simple shell script to report PSAD alerts via KDE.
KPSAD is a simple shell script to report PSAD alerts via KDE. The project supports simple whitelisting.
Ok, this is important. To stop KPSAD annoying you, create a whitelist file!!! The whitelist file is named ".whitelist" in the same directory as the program itself.
After the whitelist is created, then you're almost ready to go. Open up the program in your favourite text editor. At the bottom of the script, there's a section where you can add a mail client. This is optional, but allows you to run this almost transparently to PSAD
YOU NEED PSAD FOR THIS TO WORK!!!
Get PSAD, then edit the config file, so it points at the KPSAD program as the "mailCmd"
In future, I will write a script that will install this automatically, and generate whitelists, and allow you to add a new probe to the whitelist or black list, etc. In the meantime though, here you go.
There is a sample whitelist file in this directory. It's probably invisible to you, because it's named .whitelist.
What's New in This Release:Added interactive whitelisting, firewall blocking, and DNS lookup on attacker.
Program Release Status: Minor Update
Program Install Support: Install and Uninstall