Snort mailing list archives

Re: General questions

From: SkatFiend () aol com
Date: Mon, 18 Feb 2002 14:28:23 EST

The ARIS extractor uses the alert.ids and can also use the portscan.log text files to send info to security focus and 
is completely separate from mysql. You would simply need to write snort output to both the mysql database and the 
alert.ids files.

Yes, ACID is more or less real time, depending on your configuration/system delay time.

Cliff

1. I want to make snort log into mysqldatabase. How then I will represent the results from the database, should I use 
ACID, is it a real-time tool?
 
2.Can I use aris extractor to take entries from mysql database in send it to security focus to their console?
 
thx. 

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Current thread:

General questions Fran Boudraux (Feb 18)
- <Possible follow-ups>
- Re: General questions SkatFiend (Feb 18)