Re: Rule Managment Tool

[Alexandre Dulaunoy <adulau-snort () colorado g-inter net>]

Could be an extension to acid... Yes I know, it's just analysis. But it
could be a cool feature. 

Another thing that could be interesting is to have a parser to include
checkpoint FW1 & pix logs to snort-acid-db... 

alx

On Thu, 10 May 2001, Cedric Guillotin wrote:

> Since I found ACID very interesting to manage logs, I was wondering if I
> could find a tool to manage rules to get a complete control over snort.
>
> I'm looking for a tool with the following functionnalities:
>
>       - manage rule (store rules in db, sort rules, add, remove update)
>       - manage ruleset for each sensor (select active rules, deploy ruleset)
>
> I've seen some scripts, but a frontend could be usefull.
>
> _______________________________________________
> Snort-users mailing list
> Snort-users () lists sourceforge net
> Go to this URL to change user options or unsubscribe:
> http://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users

-- 
---
Alexandre J.D. Dulaunoy  | "Engineering is the implementation of science;
AD993-RIPE               | Politics is the implementation of faith".
http://www.foo.be/       |                      Another usenet quote...



_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
http://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users