Re: snort and mysql5 losing db connection

["Richard Bejtlich" <taosecurity () gmail com>]

On 6/14/07, Jason Brvenik <jasonb () sourcefire com> wrote:
> Interesting that this topic comes up.
>
> I wrote a perl module for handling unified files for just these reasons
> (and many more) it currently lives at:
>
> http://cerberus.sourcefire.com/~jbrvenik/unified_perl
>
> It fully handles unified files and is portable across platforms and
> handles big/little endian issues and 64bit unified files too.
>
> It would not take much work to make the db code a direct replacement for
> barnyard.
>
> http://cerberus.sourcefire.com/~jbrvenik/unified_perl/ufdbtest.pl
>
> So... some questions for the community.
>
> - What is the interest in having a direct barnyard replacement?
> - Anyone interested in taking a stab at it?
> - What other capabilities are desired (I know you want ppp support, Richard)
> - Anyone want to take up documenting it?

Hi Jason,

A Barnyard replacement that works with Sguil would r0x0r.

Were you serious about PPP?  :)

Richard

-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users