Security Basics mailing list archives
Snort sniffer logs
From: Tom Rhodes <trhodes () FreeBSD org>
Date: Sat, 28 May 2005 16:03:40 -0400
Hi everyone, Relatively quiet on the list but I finally have a question and am hoping someone has an answer. On a network we have, snort is being run as a sniffer to capture application data transferred on the dc0 interface. Is there an easy way to parse the output? Reading a few hundred TCP:XXX files every day doesn't sound like fun. I've thought about using ACID and dropping it into mysql, but would that make viewing any easier? Thanks in advance. -- Tom Rhodes
Current thread:
- Re: user name from security logs, (continued)
- Re: user name from security logs Emmanuel Goldstein (May 30)
- Re: user name from security logs Dave Patterson (May 31)
- Re: user name from security logs mike (May 31)
- Reseting root password Was: user name from security logs Alexander Klimov (May 31)
- Re: user name from security logs pierpaolo giacomin (May 31)
- Resetting the root password (was: user name from security logs) Ansgar -59cobalt- Wiechers (May 31)
- Re: user name from security logs Tom Rhodes (May 31)
- RE: user name from security logs Miguel Dilaj (May 31)
- Re: user name from security logs Emmanuel Goldstein (May 30)
- Re: user name from security logs Greg Stiavetti (May 27)
- Re: user name from security logs Kevin (May 26)
- Snort sniffer logs Tom Rhodes (May 30)
- Re: Snort sniffer logs Ron (May 31)
- Snort sniffer logs Tom Rhodes (May 30)