Snort mailing list archives

Previous By Date Next
Previous By Thread Next

why is gid missing from the db schema ?

From: Yarden Livnat <yarden () mac com>
Date: Tue, 23 Nov 2004 20:36:49 -0700
I noticed that in the 'signature' table of the database schema only the sid and rev field are set from the snort event but the gid (generator id) is ignored and thus can not be recovered from the database. 

why is this ? is there another way of recovering the gid ?
I'm writing a visualization system that uses the data from the database but the missing 'gid' is a real headache. 

thanks,

        Yarden
p.s. I check the 'C' code and sure enough it ignore the sig_generator from the event field. 


-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now. http://productguide.itmanagersjournal.com/ 
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: