Snort mailing list archives

Re: Email Notification Methods?

From: Dirk Geschke <Dirk () geschke-online de>
Date: Wed, 04 Feb 2004 22:31:39 +0100

Hi Michael,

 I running four snort boxes reporting to a central mysql server. I'd like to have email notification for certain 
snort alerts if that is possible. 

 I'm soliciting recomendations for software that can help me accomplish this.

Im currently looking at Swatch which seems to be trigger by syslog events, any recomendations are welcome.


maybe you should take a look at FLoP:

http://www.geschke-online.de/FLoP/

The major aim of thie project is gathering the alerts on a central
server and feed them into the database.

One feature is to send alerts based on a priority via E-Mail to
a list of recipients right after the alert was inserted in the
database. The advantage is that you get all necessery informations
to find the alert in the database.

Best regards

Dirk



-------------------------------------------------------
The SF.Net email is sponsored by EclipseCon 2004
Premiere Conference on Open Tools Development and Integration
See the breadth of Eclipse activity. February 3-5 in Anaheim, CA.
http://www.eclipsecon.org/osdn
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Current thread:

Email Notification Methods? M. Morgan (Feb 04)
- Re: Email Notification Methods? Dirk Geschke (Feb 04)
- RE: Email Notification Methods? Michael Steele (Feb 04)
- <Possible follow-ups>
- Email Notification Methods? Jason Baeder (Feb 05)
- RE: Email Notification Methods? Peters, Michael D. (Feb 05)