Re: How to best do DB *and* syslog logging?

[Eoin Miller <eoin.miller () trojanedbinaries com>]

Barnyard2 does multiple outputs simultaneously.

http://www.securixlive.com/barnyard2/

-- Eoin

On 11/30/2011 4:45 PM, Miguel Alvarez wrote:
> Right now, I'm logging my snort alerts back to a syslog server but I'd
> like to start playing with Snorby.  Please correct me if I'm wrong but
> I think the ideal way to do this would be to log via unified2 and use
> barnyard to send the alert data to snorby's DB but I can't lose my
> syslog functionality.  I really wish barnyard was able to do this on
> non-Windows boxes!  But what would be the best way to achieve this
> short of running two separate snort instances?



------------------------------------------------------------------------------
All the data continuously generated in your IT infrastructure 
contains a definitive record of customers, application performance, 
security threats, fraudulent activity, and more. Splunk takes this 
data and makes sense of it. IT sense. And common sense.
http://p.sf.net/sfu/splunk-novd2d
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!