[Snort-users] ACID 0.9.5 Released

Roman Danyliw roman at ...438...
Thu Jan 18 15:09:56 EST 2001


Greetings!

ACID 0.9.5, a recommended major upgrade, has been released.  The following
are the changes from the previous version (0.9.4):

** New Functionality
  - Alert Groups (AG): logically group or annotate alerts
  - Emailing query results
  - Alert purging: delete old alerts or false positives
  - New Search criteria: Sensor, Alert Group, IP address as either
                         src/dest (and inputted as either octets or
                         string) 

** New Snapshots/Quick Queries
  - Today's alerts
  - Today's unique alerts
  - Most recent unique alerts
  - Most frequent alerts

** New Statistics
  - Aggregated stats on the sensors
  - Aggregated stats per single IP address
  - Unique IP addresses list from query results

** Many bug fixes!

Check out the CHANGELOG for the full details.  Likewise, several new
configuration parameters have been added to tweak the appearance and
behavior of ACID.  It is highly recommended to read the new parameter
documentation.

Download: http://www.andrew.cmu.edu/~rdanyliw/snort/snortacid.html
          http://www.cert.org/kb/acid/

Enjoy,
Roman





More information about the Snort-users mailing list