Snort mailing list archives
Re: Snort vs. Barnyard2 performance logging to a database
From: Y M <snort () outlook com>
Date: Tue, 11 Feb 2014 11:11:49 +0000
Hi Ido, Snort's database output plugin has been deprecated since Snort 2.9.3, which is EOL. For more info: http://blog.snort.org/2012/07/database-output-is-dead-rip.html http://www.snort.org/vrt/rules/eol_policy YM From: Ido.Dubrawsky () itron com To: snort-users () lists sourceforge net Date: Tue, 11 Feb 2014 10:38:07 +0000 Subject: [Snort-users] Snort vs. Barnyard2 performance logging to a database Has anyone done any performance tests benchmarking whether it’s better for the Snort IDS process to insert alerts directly into a database (MySQL or PostGREsql) or whether performance is better if Snort writes the unified2 file and lets Barnyard2 insert alerts into a database? A quick Google search hasn’t easily revealed anything relevant at the moment. Thanks,Ido Ido DubrawskySr. Principal Systems EngineerSecurity Engineering Team LeadIdo.Dubrawsky@itron.com509-891-3452 (O)/301-928-0020(M) P Please consider the impact to the environment and your responsibility before printing this e-mail. ------------------------------------------------------------------------------ Android apps run on BlackBerry 10 Introducing the new BlackBerry 10.2.1 Runtime for Android apps. Now with support for Jelly Bean, Bluetooth, Mapview and more. Get your Android app in front of a whole new audience. Start now. http://pubads.g.doubleclick.net/gampad/clk?id=124407151&iu=/4140/ostg.clktrk _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
------------------------------------------------------------------------------ Android apps run on BlackBerry 10 Introducing the new BlackBerry 10.2.1 Runtime for Android apps. Now with support for Jelly Bean, Bluetooth, Mapview and more. Get your Android app in front of a whole new audience. Start now. http://pubads.g.doubleclick.net/gampad/clk?id=124407151&iu=/4140/ostg.clktrk
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
Current thread:
- Snort vs. Barnyard2 performance logging to a database Dubrawsky, Ido (Feb 11)
- Re: Snort vs. Barnyard2 performance logging to a database Y M (Feb 11)
- Re: Snort vs. Barnyard2 performance logging to a database dandantheitman (Feb 11)
- Re: Snort vs. Barnyard2 performance logging to a database Balasubramaniam Natarajan (Feb 11)