data collected

[Greg Sarsons <gsarsons () home com>]

I've used snort to sniff traffic on a WAN.  In a day or two I will be
starting to look at the huge binary data captures.  Initially I was
going to write some perl scripts to parse the playback of the data piped
from snort.   

However, I'm thinking that I should just replay with snort and log to
mysql.  Then I can do the analysis I want.  Guess I should even add the
snortdb-extra.gz as well.

Is there any benifit right now of using the latest CVS to do this vice
the released version?

Any thoughts or comments welcome.

Greg






_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users