Snort mailing list archives
Re: ACID / Snort Question
From: roman () danyliw com
Date: Fri, 7 Dec 2001 17:17:33 US/Eastern
Only those classifications for which alerts have been already logged will appear in the database. If you wish to have all your classifications stored in the database, it is perfectly reasonable to manually insert them into the sig_class table. Roman
Hello, I have just upgraded to snort 1.8.3 and ACID 0.9.6b19. When I look at the search page in the ACID console I only see the following classifications available for use in searching, attempted-recon web-application-activity web-application-attack attempted-dos unknown attempted-admin kickass-porn bad-unknown misc-activity I want to add the rest of the classifications to aid me in searching. Can I just insert them in to the sig_class table? Or is there more to it than that. Thanks! vjl -- V.Jay LaRosa EMC Corporation Systems Administrator 171 South Street (508)435-1000 ext 14957 Hopkinton, MA 01748 (508)497-8082 fax www.emc.com _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
--------------------------------------------- This message was sent using Voicenet WebMail. http://www.voicenet.com/webmail/ _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- ACID / Snort Question Vjay LaRosa (Dec 07)
- <Possible follow-ups>
- Re: ACID / Snort Question roman (Dec 07)