Snort mailing list archives
Re: General questions
From: SkatFiend () aol com
Date: Mon, 18 Feb 2002 14:28:23 EST
The ARIS extractor uses the alert.ids and can also use the portscan.log text files to send info to security focus and is completely separate from mysql. You would simply need to write snort output to both the mysql database and the alert.ids files. Yes, ACID is more or less real time, depending on your configuration/system delay time. Cliff 1. I want to make snort log into mysqldatabase. How then I will represent the results from the database, should I use ACID, is it a real-time tool? 2.Can I use aris extractor to take entries from mysql database in send it to security focus to their console? thx. _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- General questions Fran Boudraux (Feb 18)
- <Possible follow-ups>
- Re: General questions SkatFiend (Feb 18)