Snort mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Acid quickie

From: "Schmehl, Paul L" <pauls () utdallas edu>
Date: Mon, 23 Jun 2003 10:52:52 -0500
I almost hate to tell you this, but....

You can sort the alerts in ascending or descending order simply by
clicking on the "<" or ">" beside the alert column.  There's no need to
modify ACID.

AAMOF, you'll find those "<" and ">" links beside almost every column.
So, for example, you can click on the 15 most frequent alerts and sort
them by the Total (ascending or descending) or by the Signature or
Classification or Src Addr. Or Dest. Addr. Or First or Last.

Once you're selected an signature you can sort by Signature, Timestamp,
Source Address, Dest. Address or Layer 4 Proto (ascending or descending
in every case.)

Paul Schmehl (pauls () utdallas edu)
Adjunct Information Security Officer
The University of Texas at Dallas
AVIEN Founding Member
http://www.utdallas.edu/~pauls/ 


-----Original Message-----
From: Zack Jordan [mailto:zackj26 () yahoo com] 
Sent: Saturday, June 21, 2003 10:29 PM
To: Snort-users () lists sourceforge net
Subject: Re: [Snort-users] Acid quickie


A Coworker made these changes, not sure if its what
you are looking for:

Changes made to acid_stat_common.php so that alerts
are now 
sorted in descending (Newest alerts first) order. 

- $event_cnt_info[1] = '<A 
HREF="acid_qry_main.php?&num_result_rows=-1'. 
                       
'&submit=Query+DB&current_view=1">'; 
+ $event_cnt_info[1] = '<A
HREF="acid_qry_main.php?&num_result_rows=-1'. 
                       
'&submit=Query+DB&current_view=1&sort_order=time_d">';



-------------------------------------------------------
This SF.Net email is sponsored by: INetU
Attention Web Developers & Consultants: Become An INetU Hosting Partner.
Refer Dedicated Servers. We Manage Them. You Get 10% Monthly Commission!
INetU Dedicated Managed Hosting http://www.inetu.net/partner/index.php
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: