[Snort-users] Semi-automatic notification email generator for Snort?

Michael Scheidell scheidell at ...5171...
Sun Jul 28 10:20:02 EDT 2002


has a perl agent that reads snort,ipfw,ipchains,ipfilter,iptunnels,
pix,cisco logs, etc

obscrusifakates last two octets of you ip address, filters out false alarms
(by looking at 1000 other sensors)

(oh, the whois contact is usually bogus.. dropped years ago do to being
spammed to hell and back, www.abuse.net has better chance, but what do you
do about china, korea, tiawan, south america, etc)

Michael Scheidell
SECNAP Network Security, LLC
Sales: 866-SECNAPNET / (1-866-732-6276)
Main: 561-368-9561 / www.secnap.net
Ar you a security professinal? see http://www.secnap.net/employment/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20020728/292fc7e8/attachment.html>

More information about the Snort-users mailing list