[Snort-users] Rule Managment Tool

Alexandre Dulaunoy adulau-snort at ...1558...
Thu May 10 05:37:57 EDT 2001


Could be an extension to acid... Yes I know, it's just analysis. But it
could be a cool feature. 

Another thing that could be interesting is to have a parser to include
checkpoint FW1 & pix logs to snort-acid-db... 

alx

On Thu, 10 May 2001, Cedric Guillotin wrote:

> Since I found ACID very interesting to manage logs, I was wondering if I
> could find a tool to manage rules to get a complete control over snort.
> 
> I'm looking for a tool with the following functionnalities:
> 
> 	- manage rule (store rules in db, sort rules, add, remove update)
> 	- manage ruleset for each sensor (select active rules, deploy ruleset)
> 
> I've seen some scripts, but a frontend could be usefull.
> 
> _______________________________________________
> Snort-users mailing list
> Snort-users at lists.sourceforge.net
> Go to this URL to change user options or unsubscribe:
> http://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users
> 

-- 
---
Alexandre J.D. Dulaunoy  | "Engineering is the implementation of science;
AD993-RIPE               | Politics is the implementation of faith".
http://www.foo.be/       |                      Another usenet quote...






More information about the Snort-users mailing list