Snort mailing list archives
RE: email notification scripts
From: "larosa, vjay" <larosa_vjay () emc com>
Date: Fri, 3 Jan 2003 08:04:41 -0500
Hi Ryan, I have a script that I wrote that connects to a MySQL DB and counts each unique event for the date specified and then prints out the event and the number of times it was logged to the database. If this is what you are looking for let me know, I will send it to you and anybody else that is interested. vjl -----Original Message----- From: Ryan Ordway [mailto:ryan () nwgeeks com] Sent: Thursday, January 02, 2003 6:34 PM To: snort-users () lists sourceforge net Subject: [Snort-users] email notification scripts I've recently moved from an alert logging based Snort system to a MySQL based logging Snort system. Previously I had a script that would parse the alert file periodically and email the output to me if certain conditions existed (certain rules had been matched). Now of course, there is no alerts file to parse. Is there a script available online somewhere that will connect to the database and run a query to list all alerts logged in the last x amount of time? I'm trying to write one myself, but not having much luck unfortunately.... maybe something to use as an example? Thanks muchly, Ryan -- ryan () nwgeeks com HELO... my name is root... you have SIGKILLed my father... prepare to vi! Hi! Can you to speak to me the learn for to speak the Unix? ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- email notification scripts Ryan Ordway (Jan 02)
- Snort2html.pl Mike Koponick (Jan 02)
- Re: email notification scripts Edin Dizdarevic (Jan 07)
- <Possible follow-ups>
- RE: email notification scripts larosa, vjay (Jan 03)
- RE: email notification scripts Ryan Ordway (Jan 03)
- RE: email notification scripts larosa, vjay (Jan 03)
- RE: email notification scripts larosa, vjay (Jan 03)
- RE: email notification scripts Mike Koponick (Jan 03)