Snort mailing list archives
Re: Aurora Exploit Attempt Alert One Hour Delay
From: waldo kitty <wkitty42 () windstream net>
Date: Thu, 23 Jan 2014 13:16:55 -0500
On 1/23/2014 11:28 AM, LaTonya Hall wrote:
There is about a one hour delay from exploit attempt to snort alert…any ideas?
no ideas at all... not without more information... 1. what rule(s) are you speaking of? 2. do you have any pcaps of the traffic? 3. are you using something to post the alert data to a database? 4. are you speaking of the delay in the alert showing up in the database? -- NOTE: No off-list assistance is given without prior approval. Please keep mailing list traffic on the list unless private contact is specifically requested and granted. ------------------------------------------------------------------------------ CenturyLink Cloud: The Leader in Enterprise Cloud Services. Learn Why More Businesses Are Choosing CenturyLink Cloud For Critical Workloads, Development Environments & Everything In Between. Get a Quote or Start a Free Trial Today. http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
Current thread:
- Aurora Exploit Attempt Alert One Hour Delay LaTonya Hall (Jan 23)
- Re: Aurora Exploit Attempt Alert One Hour Delay waldo kitty (Jan 23)
- Re: Aurora Exploit Attempt Alert One Hour Delay Kevin Ross (Jan 23)
- Re: Aurora Exploit Attempt Alert One Hour Delay LaTonya Hall (Jan 23)
- Re: Aurora Exploit Attempt Alert One Hour Delay Mike Miller (Jan 23)
- Re: Aurora Exploit Attempt Alert One Hour Delay Latonya Hall (Jan 23)
- Re: Aurora Exploit Attempt Alert One Hour Delay Mike Miller (Jan 23)
- Re: Aurora Exploit Attempt Alert One Hour Delay Latonya Hall (Jan 23)
- Re: Aurora Exploit Attempt Alert One Hour Delay James Lay (Jan 23)
- Re: Aurora Exploit Attempt Alert One Hour Delay LaTonya Hall (Jan 23)
- Re: Aurora Exploit Attempt Alert One Hour Delay Latonya Hall (Jan 23)
- Re: Aurora Exploit Attempt Alert One Hour Delay Joel Esler (jesler) (Jan 23)