NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Snort IDS> 2001-06

From: Erek Adams (erektheadamsfamily.net)
Date: Tue Jun 05 2001 - 13:13:58 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I've got to stop working... I can't keep up with all the new
features/revisions! ;-)

Ok, for the real isssue.... I'm running 1.7b8 in production and I really
would like to move to a nice stable 1.8b?? version. We're currently using
Snort_Stat.pl to give mgmt a nice little who did what report.

In trying to improve speed, we're ditching our sysloging. I grabbed the
newest copy of Snort_Stat.pl (1.6.6.1) and tried to point it at alert.full,
but it does not seem to like it at all.

Does anyone use it with the FULL output format? If so, what magic did you
work on it? If not, I'll be hacking into it later. :)

-----
Erek Adams
Nifty-Type-Guy
TheAdamsFamily.Net

_______________________________________________
Snort-users mailing list
Snort-userslists.sourceforge.net
Go to this URL to change user options or unsubscribe:
http://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]