Re: query regarding snort customization
From: Kevin Johnson (kjohnson_at_secureideas.net)
To: email@example.com Date: Wed, 24 Nov 2004 00:55:23 -0500
On Tue, 2004-11-23 at 01:04, firstname.lastname@example.org wrote:
> Hi all,
> I am looking for customized solution for snort, i.e I want to provide
> access to read alerts from database based of grouping ip's , and to
> provide access for reading alerts for these groups accordingly. If I
> provide access to a particular user to access alerts, he should be able to
> read alerts for the group of ip's I have allowed the access.
> If someone has done it or it could be configured on ACID console, or some
> open souce code for doing this is available,please suggest.
The BASE project, which is a forked version of ACID under active
development is working toward what you want. The current version
supports user authentication.
- application/pgp-signature attachment: This is a digitally signed message part