Re: query regarding snort customization

From: Kevin Johnson (
Date: 11/24/04

  • Next message: Sec Traq: "Foolin an IDS ?"
    Date: Wed, 24 Nov 2004 00:55:23 -0500

    On Tue, 2004-11-23 at 01:04, wrote:
    > Hi all,
    > I am looking for customized solution for snort, i.e I want to provide
    > access to read alerts from database based of grouping ip's , and to
    > provide access for reading alerts for these groups accordingly. If I
    > provide access to a particular user to access alerts, he should be able to
    > read alerts for the group of ip's I have allowed the access.
    > If someone has done it or it could be configured on ACID console, or some
    > open souce code for doing this is available,please suggest.
    > regards,
    > Gaurav

    The BASE project, which is a forked version of ACID under active
    development is working toward what you want. The current version
    supports user authentication.

    BASE Project Lead
    The next step in IDS analysis!


  • Next message: Sec Traq: "Foolin an IDS ?"