Snort mailing list archives
Feeding mysql db with alert log files.
From: Daniel Gil <danielgil () techemail com>
Date: Sun, 22 Jun 2003 12:53:40 -0700 (PDT)
Hi, Iam new on snort. Iam using snort 2 with mysql and ACID. Iam just want to know if its posible to feed a mysql db with snort log files that have already been written to disk in text format (portscan, alerts, and packet logs) in order to analyze them with ACID. It's seems this task is easy to perform if the logs are in tcpdump format. I have just found an old script (for snort 1.6.x) by Sean Brown. I couldnĀ“t find any sample of a snort 1.6.x alert log file in order to compare them with my snort 2 alert log files. Any advice (as change yer log format to tcpdump) is welcome !. Thankz in Advance. Daniel. _____________________________________________________________ Are you a Techie? Get Your Free Tech Email Address Now! Visit http://www.TechEmail.com _____________________________________________________________ Select your own custom email address for FREE! Get you () yourchoice com, No Ads, 6MB, IMAP, POP, SMTP & more! http://www.everyone.net/selectmail?campaign=tag ------------------------------------------------------- This SF.Net email is sponsored by: INetU Attention Web Developers & Consultants: Become An INetU Hosting Partner. Refer Dedicated Servers. We Manage Them. You Get 10% Monthly Commission! INetU Dedicated Managed Hosting http://www.inetu.net/partner/index.php _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Feeding mysql db with alert log files. Daniel Gil (Jun 23)
- Re: Feeding mysql db with alert log files. Erek Adams (Jun 23)