Re: IIS and Snort
From: Ian Macdonald (sec-home@dirk.demon.co.uk)Date: 09/21/01
- Previous message: Garrett Ellis: "LIDS Information/Question"
- In reply to: McCammon, Keith: "RE: IIS and Snort"
- Next in thread: Johannes B. Ullrich: "Re: IIS and Snort"
- Reply: Johannes B. Ullrich: "Re: IIS and Snort"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Message-ID: <005201c1422e$e63ab320$64140a0a@IMACDONALD2> From: "Ian Macdonald" <sec-home@dirk.demon.co.uk> To: "McCammon, Keith" <Keith.McCammon@eadvancemed.com>, "'Brian Carvalho'" <brian.carvalho@verizon.net>, <focus-ids@securityfocus.com> Subject: Re: IIS and Snort Date: Thu, 20 Sep 2001 19:49:32 -0400
Does anyone have any suggestions for generating email alerts from a unix box
running snort which sends data to a mysql database. I wanted to try acid
which is why I decided to log to a database.
Thanks for you suggestions
Ian
----- Original Message -----
From: "McCammon, Keith" <Keith.McCammon@eadvancemed.com>
To: "'Brian Carvalho'" <brian.carvalho@verizon.net>;
<focus-ids@securityfocus.com>
Cc: <focus-ms@securityfocus.com>
Sent: Wednesday, September 19, 2001 6:49 PM
Subject: RE: IIS and Snort
> ***Is there any way to send alerts with Snort?
>
> Snort generates an alert.ids file where alerts are written. However, you
> can configure output plug-ins for SQL, syslog, etc. You can pretty much
get
> your alerts any way you want 'em with relatively little effort.
>
- Previous message: Garrett Ellis: "LIDS Information/Question"
- In reply to: McCammon, Keith: "RE: IIS and Snort"
- Next in thread: Johannes B. Ullrich: "Re: IIS and Snort"
- Reply: Johannes B. Ullrich: "Re: IIS and Snort"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
