Tagging

["Matheus Condi'ez" <conma293 () gmail com>]

Hey guys,

Im beginning to muddle around with tagging, can seemingly get the rules to
fire off quite easily and tag 'full' packets for x amount of time, bytes
etc ...

But then this gets lumped into the U2 files and processed by Barnyard2 -->
what im wondering is how the packets in addition to the alerting packet get
processed by BY2 output so that it would come up as the whole payload in a
snorby or tripwire interface...

any takers?

------------------------------------------------------------------------------
"Accelerate Dev Cycles with Automated Cross-Browser Testing - For FREE
Instantly run your Selenium tests across 300+ browser/OS combos.
Get unparalleled scalability from the best Selenium testing platform available
Simple to use. Nothing to install. Get started now for free."
http://p.sf.net/sfu/SauceLabs

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!