Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Email Notification Methods?

From: Jason Baeder <jason_baeder () yahoo com>
Date: Wed, 4 Feb 2004 12:24:34 -0800 (PST)
Michael,

I've been embarking upon the same task this past week. Since MySQL does
not support triggers (yet), I've decided to use Swatch on each sensor. 
You might want to read "Real-Time Alerting with Snort" found here
http://www.linuxsecurity.com/feature_stories/feature_story-144.html


You might also be interested in 'smtpclient'; it eliminates the
necessity of installing sendmail on the sensors.  It can be found here:
http://www.engelschall.com/sw/smtpclient/

Jason


On Wed, 2004-02-04 at 14:26, M. Morgan wrote:

Hello all,
 I running four snort boxes reporting to a central mysql server. I'd
like to have email notification for certain snort alerts if that is
possible. 

 I'm soliciting recomendations for software that can help me

accomplish

this.

Im currently looking at Swatch which seems to be trigger by syslog
events, any recomendations are welcome.

Thanks,
Michael



__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free web site building tool. Try it!
http://webhosting.yahoo.com/ps/sb/


-------------------------------------------------------
The SF.Net email is sponsored by EclipseCon 2004
Premiere Conference on Open Tools Development and Integration
See the breadth of Eclipse activity. February 3-5 in Anaheim, CA.
http://www.eclipsecon.org/osdn
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: