The Network Security Monitor Daemon is a compact and efficient monitoring software for LANs that enables a secure TCP/IP connection.
You can test the software by running a test version using './Monitord'. The production version can be run in the background. For instance, you may use 'nohup ./monitord &' to run the production version. Both versions will accept a device name as a parameter, which by default, is eth0.
You may send SIGHUP at any time to print some stats, and if you send SIGTERM, SIGQUIT or SIGINT, all threads will end gracefully.
This release includes various updates such as a Linux Kernel with "packet sockets" and "socket filtering" support, and the GNU C Library 2 (glibc2) with LinuxThreads support (which is integrated in most recent versions). It also includes a full MySQL, including headers and libmysqlclient_r, GNU C Compiler (gcc), GNU Make (make), Perl (perl), and Wget (wget).
The latest release includes additional features such as adding 'chmod 4755...' in Makefile, such that Root should run 'make' now, but not the daemon. The daemon will drop root privileges as soon as possible, primarily after creating the raw socket with an attached Linux socket filter and putting the interface in promiscuous mode. No threads run with root privileges making it much safer, more especially for the new server thread that reads remote user input. Other features include an added stats thread to calculate/expose exponential averages and a server thread to accept HTTP requests and serve stats in XML.
Version 4.0: N/A