searching for open source security packages
A process table analyzer capable of generating alerts when one non-system user is has been using a lot of processes, a lot of memmory, or a lot of cpu for a while.
And, a multi-machine log aggregator/analyzer, so when some dingdog hits dozens of our servers in an attempt to login as root, we can detect and block dynamically.
Any recommendations/links appreciated. I can search sourceforge and freshmeat, but I'm looking for recommendations based on systems admins' experience.
Thanks!
