Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Why can't I see tcp flags for a triggered alert (snort+base)

From: Joel Esler <eslerj () gmail com>
Date: Thu, 22 Jan 2009 08:24:30 -0500
On Thu, Jan 22, 2009 at 6:51 AM, John Huss <john.huss () thebunker net> wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello again,

Thought I should also mention what version of apps I'm using related to
this strange problem I'm having:

net-analyzer/snort-2.6.1.3-r1
net-analyzer/base-1.4.1
net-analyzer/barnyard-0.2.0-r1
dev-db/mysql-5.0.70-r1
www-servers/apache-2.2.10
net-analyzer/oinkmaster-2.0

Is there any tips you could give me to help me debug why the tcp header
options are not being stored in Mysql?


I see nothing in any of your pastings that indicate that something
wouldn't be operating correctly. You are using barnyard I am assuming?

Joel

------------------------------------------------------------------------------
This SF.net email is sponsored by:
SourcForge Community
SourceForge wants to tell your story.
http://p.sf.net/sfu/sf-spreadtheword
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: