Snort mailing list archives

Previous By Date Next
Previous By Thread Next

using flow_portscan with acid

From: Adam Denenberg <straightflush () gmail com>
Date: Tue, 13 Jul 2004 10:22:56 -0400
i enabeld flow_portscan in snort 2.2.0-RC1 as a replacement for
portscan2.  however i would like the portscan traffic to show up in
the acid main console screen but it does not.
 
  i am using unififed output with barnyard logging to a remote
database.  The flow_portscan alerts show up when i go to "unique
alerts" but not in the main page.

 is there any way to integrate these two?  Do i need to enable
portscan2 for this to work ?

thanks
adam


-------------------------------------------------------
This SF.Net email sponsored by Black Hat Briefings & Training.
Attend Black Hat Briefings & Training, Las Vegas July 24-29 - 
digital self defense, top technical experts, no vendor pitches, 
unmatched networking opportunities. Visit www.blackhat.com
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: