Snort mailing list archives
Snort, ACID and portscan.log
From: Christopher Cook <crcook () oakland edu>
Date: Fri, 09 Aug 2002 11:45:14 -0400
I currently have Snort running on one box and doing all the spiffy mySQL logging to another centrally located machine. It's set to log alerts and does that just fine. Snort is set to log portscans and send them to a portscan file locally to the snort box. I didn't see any options in Snort to send the portscan file to the remote log server so that ACID can access it. Is there a way to send the file to the remote log server through Snort, or do I need to set a job to do it every night or so?
Chris Cook Security and Support Specialist Office of Information Technology Oakland University ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Snort, ACID and portscan.log Christopher Cook (Aug 09)
- <Possible follow-ups>
- Re: Snort, ACID and portscan.log Christopher Cook (Aug 09)
- Re: Snort, ACID and portscan.log Roman Danyliw (Aug 12)