Snort mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Barnyard newbie questions.

From: "Lance Boon" <lboon () firststatebanksw com>
Date: Wed, 9 Jun 2004 14:28:56 -0500
I'm not sure on the first question, but on the second one you can use
Stunnel to set it up. The book Intrusion Detection with Snort isbn #
0131407333 has a nice little how to guide on using Stunnel.

-----Original Message-----
From: snort-users-admin () lists sourceforge net
[mailto:snort-users-admin () lists sourceforge net] On Behalf Of Shaun T.
Erickson
Sent: Wednesday, June 09, 2004 1:07 PM
To: snort-users () lists sourceforge net
Subject: [Snort-users] Barnyard newbie questions.

1) If I have snort save both alerts and packets, do I have to run two 
separate barnyards to get both log files loaded into the acid database? 
All the examples I've seen only show barnyard being fed one input file, 
while having one or more output plugins. Would I just specify two -f 
options to barnyard and use the two appropriate output plugins?

2) The database will be remote. I want to connect to it over a secure 
connection. I can't find anything that tells me how to do that. Pointers

to the right FM to read are welcome. :)

Thanks!

        -ste


-------------------------------------------------------
This SF.Net email is sponsored by: GNOME Foundation
Hackers Unite!  GUADEC: The world's #1 Open Source Desktop Event.
GNOME Users and Developers European Conference, 28-30th June in Norway
http://2004/guadec.org
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users


-------------------------------------------------------
This SF.Net email is sponsored by: GNOME Foundation
Hackers Unite!  GUADEC: The world's #1 Open Source Desktop Event.
GNOME Users and Developers European Conference, 28-30th June in Norway
http://2004/guadec.org
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: