Honeypots mailing list archives

Re: honeywall roo compilation of daily snort alerts

From: Hugo Francisco González Robledo <hugo.gonzalez () itslp edu mx>
Date: Tue, 18 Apr 2006 09:36:37 +0000

maybe you want to use ACID to analyse the snort information.
You need mysql, apache and php to get work ACID, but it's great.

regards!


On Mon, Apr 17, 2006 at 06:09:13PM -0600, mat wrote:

is there any way to do a day to day listing of all the snort allerts, 
sorted by how serious they are.  for example, i get like hundreds of udp 
port 0 and the ms-sql attacks, but how can i sift through to see some 
interesting attacks?  thanks in advance.

mat


-- 
Hugo Francisco González Robledo
Instituto Tecnológico de San Luis Potosí

Llave pública en http://ardilla.zapto.org

Excelente año 2006!

-------------------------------------------
Educación es lo que queda después de olvidar
lo que se ha aprendido en la escuela.
                Albert Einstein
-------------------------------------------

Current thread:

honeywall roo compilation of daily snort alerts mat (Apr 17)
- Re: honeywall roo compilation of daily snort alerts Hugo Francisco González Robledo (Apr 18)
  - Re: honeywall roo compilation of daily snort alerts Kevin Johnson (Apr 19)
- Re: honeywall roo compilation of daily snort alerts Mark Ryan del Moral Talabis (Apr 19)