RE: Re: Log analysis without ACID

["Randy Walinga" <randy () watchhog org>]

If you don't mind installing Tomcat, then try out WatchHog for the DB
reports ( www.watchhog.org )

It does reports like this.  New sleeker and cooler version will be out soon
too.

Randy.


-----Original Message-----
From: snort-users-admin () lists sourceforge net
[mailto:snort-users-admin () lists sourceforge net]On Behalf Of Frank
Barton
Sent: April 29, 2004 8:07 AM
To: snort-users () lists sourceforge net
Subject: [Snort-users] Re: Log analysis without ACID


Personaly, I'm looking for a basic summary of
a)a basic list of there were N hits of type X (sorted by i) severity and
ii) number of occurances
b)Number of Hits per IP address

> Message: 1
> Date: Tue, 27 Apr 2004 16:33:59 -0500
> From: Michael Sconzo <msconzo () tamu edu>
> To: Michael Steele <michaels () winsnort com>
> Cc: snort-users () lists sourceforge net
> Subject: Re: [Snort-users] Log analysis without ACID
>
> On Tue, Apr 27, 2004 at 12:58:11PM -0700, Michael Steele wrote:
> > ACID does not generate report logs.
> >
> > I have yet to find one. It would be nice to find one that can generate
> > weekly, monthly and yearly reports from the Snort log.
>
> What kind of information are you looking for in the report... ?
>
>
> -=Mike



-------------------------------------------------------
This SF.Net email is sponsored by: Oracle 10g
Get certified on the hottest thing ever to hit the market... Oracle 10g. 
Take an Oracle 10g class now, and we'll give you the exam FREE. 
http://ads.osdn.com/?ad_id=3149&alloc_id=8166&op=click
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users