Re: Barnyard's explained

[sekure <sekure () gmail com>]

Barnyard takes that unified log file, which by itself does you no good
since it's in binary format and you can't read it, and process it,
outputing the alerts to a variety of devices, be it regular text
files, syslog or databases.



----- Original Message -----
From: Tom Fulton <tfulton9909 () comcast net>
Date: Tue, 20 Jul 2004 19:33:22 -0700
Subject: [Snort-users] Barnyard's explained
To: snort-users () lists sourceforge net















Can someone explain what the benefit is of using Barnyard?




I understand that the unified output plug in allows Snort to write
alerts and logs into a single binary file which frees up processing
from the detection engine (as apposed to writing to a flat file, etc)
so that Snort runs faster overall.  However, Snort does that by
itself.   I'm not clear on what value Barnyard adds to this.



thanks


-------------------------------------------------------
This SF.Net email is sponsored by BEA Weblogic Workshop
FREE Java Enterprise J2EE developer tools!
Get your free copy of BEA WebLogic Workshop 8.1 today.
http://ads.osdn.com/?ad_id=4721&alloc_id=10040&op=click
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users