Snort mailing list archives
Re: Snort + LCD display
From: Michael Boman <michael.boman () securecirt com>
Date: 27 Jul 2003 09:37:23 +0800
On Sun, 2003-07-27 at 01:06, eth wrote: [snip]
What Snort output system will be the best in this case (I prefer displaying alerts immediately)? Maybe any other solutions? Please help.
Hmm.. Would the (fairly undocumented) socket do it? Don't ask me how,
never used the socket option before but it might do what you want...
From snort's man page:
-A alert-mode
[...]
Unsock is an experimental mode that sends the alert information out
over a UNIX socket to another process that attaches to that socket.
Best regards
Michael Boman
--
Michael Boman
Security Architect, SecureCiRT Pte Ltd
http://www.securecirt.com
Attachment:
signature.asc
Description: This is a digitally signed message part
Current thread:
- Snort + LCD display eth (Jul 26)
- Re: Snort + LCD display Michael Boman (Jul 26)
- Re: Snort + LCD display frenzy (Jul 28)
- Re: Snort + LCD display Alejandro Flores (Jul 28)
- Re: Snort + LCD display eth (Jul 27)
- Re: Snort + LCD display Michael Boman (Jul 26)