Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: ACID / Snort Question

From: roman () danyliw com
Date: Fri, 7 Dec 2001 17:17:33 US/Eastern
Only those classifications for which alerts have been
already logged will appear in the database.

If you wish to have all your classifications stored in 
the database, it is perfectly reasonable to manually
insert them into the sig_class table.

Roman


Hello,

I have just upgraded to snort 1.8.3 and ACID 0.9.6b19. When I look at
the search
page in the ACID console I only see the following classifications
available for use
in searching,

 attempted-recon
web-application-activity
web-application-attack
attempted-dos
unknown
attempted-admin
 kickass-porn
bad-unknown
misc-activity

I want to add the rest of the classifications to aid me in searching.
Can I just insert them in to the
sig_class table? Or is there more to it than that. Thanks!

vjl




--
 V.Jay LaRosa                           EMC Corporation
 Systems Administrator                  171 South Street
 (508)435-1000 ext 14957                Hopkinton, MA 01748
 (508)497-8082 fax                      www.emc.com




_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users






---------------------------------------------
This message was sent using Voicenet WebMail.
      http://www.voicenet.com/webmail/



_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: