Snort mailing list archives

RE: Where to send logs

From: "L. Christopher Luther" <CLuther () Xybernaut com>
Date: Thu, 6 Feb 2003 14:48:00 -0500

I run two two snort sensors, both log to a central MySQL DB on a third box,
and also send syslog alerts to this same box.  I use IDScenter on each of
the sensors to generate e-mail alert notifications to a common mailbox.  

My two cents...  

-----Original Message-----
From: spyguy <spyguy703 () earthlink net>
To: snort-users () lists sourceforge net
Date: 06 Feb 2003 10:04:10 -0800
Subject: [Snort-users] Where to send logs

Hello.

I am building more Snort IDS's to cover our network.

However, logging in to each one and checking the alerts is very tedious.

What are some of you doing to centrally view all of your alerts?

Thanks in advance.

Current thread:

Where to send logs spyguy (Feb 06)
- Re: Where to send logs twig les (Feb 06)
- RE: Where to send logs David Scott (Feb 06)
- <Possible follow-ups>
- RE: Where to send logs L. Christopher Luther (Feb 06)