Re: Alternative to BASE

[Stephen Mullins <steve.mullins.work () gmail com>]

As an analyst I can tell you that Sguil is the best IDS analysis front
end that I have ever seen.  It blows anything web based out of the
water.

On Wed, Apr 28, 2010 at 11:54 AM, Curt Shaffer <cshaffer () gmail com> wrote:
> What is everyone using out there instead of BASE? I know a lot of the
> newer documentation on installing Snort is mentioning BASE quite a bit
> even though it seems like development has not really progressed and
> the mailing list is a dead SPAM bed.
>
> The reason I am asking is because we just upgraded one of our sensors
> to 2.8.6 using Barnyard (tried barnyard2 as well), and we are not
> getting data to the database from that sensor now. When we tried
> Barnyard2 it started to log in the database but died even though the
> processes are still running. The other sensors are reporting back as
> well without an issue.
>
> I know this isn't a Barnyard or BASE list, but I just wanted to get a
> general snort user consensus, or if anyone else that upgraded snort
> this past week is seeing this as well.
>
> Curt
>
> ------------------------------------------------------------------------------
> _______________________________________________
> Snort-users mailing list
> Snort-users () lists sourceforge net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users

------------------------------------------------------------------------------
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users