Snort mailing list archives
Re: Semi-automatic notification email generator for Snort?
From: "Michael Scheidell" <scheidell () secnap net>
Date: Sun, 28 Jul 2002 13:19:12 -0400
www.mynetwatchman.com has a perl agent that reads snort,ipfw,ipchains,ipfilter,iptunnels, pix,cisco logs, etc obscrusifakates last two octets of you ip address, filters out false alarms (by looking at 1000 other sensors) etc. (oh, the whois contact is usually bogus.. dropped years ago do to being spammed to hell and back, www.abuse.net has better chance, but what do you do about china, korea, tiawan, south america, etc) -- Michael Scheidell SECNAP Network Security, LLC Sales: 866-SECNAPNET / (1-866-732-6276) Main: 561-368-9561 / www.secnap.net Ar you a security professinal? see http://www.secnap.net/employment/
Current thread:
- Semi-automatic notification email generator for Snort? Ian Webb (Jul 28)
- Re: Semi-automatic notification email generator for Snort? Michael Scheidell (Jul 28)
- RE: Semi-automatic notification email generator for Snort? Ian Webb (Jul 28)
- Re: Semi-automatic notification email generator for Snort? Michael Scheidell (Jul 28)
- RE: Semi-automatic notification email generator for Snort? Ian Webb (Jul 28)
- Re: Semi-automatic notification email generator for Snort? Joe McAlerney (Jul 29)
- Re: Semi-automatic notification email generator for Snort? Michael Scheidell (Jul 28)