Snort mailing list archives

Re: Script to move alerts from snort db to snort_archive db

From: Erick Mechler <emechler () techometer net>
Date: Tue, 17 Dec 2002 17:07:51 -0800

:: I was wondering if someone has a script to perform the move from the
:: snort db to snort_archive db much like ACID does. I just want to be able
:: to do it via a script instead of using the front end. Anybody?

I don't, but if you enable the SQL trace feature of ACID while archiving
some alerts, you should be able to figure out what SQL is necessary to do
this and then write your own script.

Or you can wait to see if someone else has already done this for you :)

Cheers - Erick


-------------------------------------------------------
This sf.net email is sponsored by:
With Great Power, Comes Great Responsibility 
Learn to use your power at OSDN's High Performance Computing Channel
http://hpc.devchannel.org/
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Current thread:

Script to move alerts from snort db to snort_archive db Christopher Lyon (Dec 17)
- Re: Script to move alerts from snort db to snort_archive db Erick Mechler (Dec 17)
- Re: Script to move alerts from snort db to snort_archive db Guy Marcenac (Dec 20)
- <Possible follow-ups>
- RE: Script to move alerts from snort db to snort_archive db Christopher Lyon (Dec 22)