Snort, Acid, BigBrother

["Martin C. Walker" <martinwalker () attbi com>]

I've looked on deadcat and didn't find anything, so before I go ahead
and do it....

Has anyone out there written an external test or hook between a snort
mysql database and big brother?  I run multiple snort sensors using
mysql on the back end.  I'm also using bigbrother to monitor those
sensors and the networks they monitor (the snort sensor is also BBNET). 
My  BBDISPLAY is also my snort/ACID display.

ideally there would be an indicator on the snort sensor device line on
the bigbrother page that lit up yellow or red when that particular
sensor logged or alerted.  clicking on the indicator would go to an ACID
url with a properly formed php query to show the alert.

slightly OT: Recommendations for a php book?
completely OT: I'm having problems with syslog-ng.  only seems to write
its data when its killed.  syslog-ng list unhelpful....rh7.1
platform....help off line?
-- 
---------------------------------------------------------------
Martin C. Walker
GCIA, CISSP, CCSE, CCSA, CCNA
Information Security and Information Technology Management
3361 Peachtree Corners Circle, #J
Norcross, GA  30092
(404) 272-0964


_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users