[Snort-users] Snort/ACID setup

Sid s_i_d_j at ...131...
Tue May 15 08:26:52 EDT 2001


i wanted to know how everyone is using Snort. I would be grateful if you
could answer the following :-

1. Where do you log the alerts? If Mysql (like i do), then to what size do
you let your database grow before you prune it?
2. If Mysql and ACID, what is response time for getting reports from ACID.
3. How do you do realtime alerts? For eg. getting paged if  a particular
alert occurs?
4. How often do you need to restart snort or how often does it crash ( i use
safetynet to monitor if snort dies)


Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com

More information about the Snort-users mailing list