Snort mailing list archives

Re: Snort-Swatch

From: "jon baer" <security () jonbaer net>
Date: Fri, 19 Sep 2003 16:16:27 -0400

Snort-Swatchwhat is the command line you are using to start up snort?

- jon
  ----- Original Message ----- 
  From: Keaton, Lindamaria 
  To: snort-users () lists sourceforge net 
  Sent: Friday, September 19, 2003 6:31 PM
  Subject: [Snort-users] Snort-Swatch

  Is anyone using swatch to email alerts? 

  If so, can someone tell me how to configure swatch to send entire content of an alert. Right now I'm getting alerts 
send but this is all I'm getting in the body of the email.

  TCP TTL:64 TOS:0x0 ID:33690 IpLen:20 DgmLen:1500 DF. 

  I would like to see source, destination, time, and what the actually alert is. Anyone have any ideas? 

  Lindamaria E. Keaton 
  Security Administrator 
  Union Safe Deposit Bank 
  209.946.5173

Current thread:

Snort-Swatch Keaton, Lindamaria (Sep 19)
- Re: Snort-Swatch jon baer (Sep 19)
- Re: Snort-Swatch Erek Adams (Sep 19)
- <Possible follow-ups>
- RE: Snort-Swatch Keaton, Lindamaria (Sep 23)
  - Re: Snort-Swatch Edin Dizdarevic (Sep 23)
- RE: Snort-Swatch Keaton, Lindamaria (Sep 23)
  - Re: Snort-Swatch Edin Dizdarevic (Sep 23)
- RE: Snort-Swatch Keaton, Lindamaria (Sep 25)
  - Re: Snort-Swatch Sir Fenix (Sep 25)
  - Re: Snort-Swatch Edin Dizdarevic (Sep 25)
- RE: Snort-Swatch Keaton, Lindamaria (Sep 25)
- RE: Snort-Swatch Keaton, Lindamaria (Sep 26)

(Thread continues...)