Snort mailing list archives
difficulties in alert generation
From: santosh reddy <mycoolsant () yahoo co in>
Date: Wed, 8 Oct 2003 00:49:46 +0100 (BST)
Hello all... i am new to snort... in three weeks..i was able to install snort successfully and i tested snort using some basic rules for which i got alerts in the ACID page... now...i set the rule files in the snort.conf file (i commented out the rule files) but i am not getting any real alerts.... i am able to log the packets into a file but until and unless we have the alerts (i.e alert packets) we cant differenciate between the bad data and good data...so how can i generate alerts using the existing rule sets... do we have to work on the internet for a long time(like opening websites or pornsites) when snort is running. suggest me some method to generate data with the abnormalities... do we hav to attack our own network...and if yes how do we do that? the final thing is ...i want to generate real time alerts and i want to log data and analyze that data... please mail me as soon as possible... thanking you regards Santosh Bethi Yahoo! India Matrimony: Find your partner online.Post your profile.
Current thread:
- difficulties in alert generation santosh reddy (Oct 07)
- Re: difficulties in alert generation Nick Oliver (Oct 07)
- Re: difficulties in alert generation risc (Oct 07)
- Re: difficulties in alert generation Nick Oliver (Oct 07)