Snort mailing list archives

Re: Barnyard output

From: "Jon Baer" <security () jonbaer net>
Date: Tue, 5 Aug 2003 17:45:06 -0700

its suppose to give you what you want it to give you :-)

i dont get why people dont understand what barnyard is/does ...

here is my own brief explanation (feel free to correct):

* snort -> unified output (this is binary logging format)

* unified output -> barnyard -> whatever you would like (cvs, tcpdump, mysql, xml, pdf, word, etc - whatever is 
currently available)

so rather than making snort do the 'whatever you want' process, you let barnyard do it. 

and then there is you, the farmer, controlling the pigs (sensors) and cleaning out the barn :-) 

- jon

pgp key: http://www.jonbaer.net/jonbaer.asc
fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47


  ----- Original Message ----- 
  From: Tony Martin 
  To: snort-users () lists sourceforge net 
  Sent: Tuesday, August 05, 2003 2:06 PM
  Subject: [Snort-users] Barnyard output


  I am trying to figured out exactly what I can gain from installing barnyard. Would anyboby be willing to either send 
me a peace of a barnyard log or a screen shot to take a look at? You can sanitize any info you don't want me to see, I 
would just like to see a real example of what it gives you.


  thanks

  Terry


------------------------------------------------------------------------------
  Do you Yahoo!?
  Yahoo! SiteBuilder - Free, easy-to-use web site design software

Current thread:

Barnyard output Tony Martin (Aug 05)
- RE: Barnyard output Scott Renna (Aug 05)
- Re: Barnyard output Jon Baer (Aug 05)
  - Re: Barnyard output Stevo (Aug 05)
    - Re: Barnyard output Jon Baer (Aug 05)
- Re: Barnyard output Ralf Spenneberg (Aug 06)
  - Re: Barnyard output AGM (Aug 06)
- Re: Barnyard output Erek Adams (Aug 06)