[Snort-users] Portscan.log utility

Erek Adams erek at ...577...
Wed May 1 11:26:07 EDT 2002


On Wed, 1 May 2002, Steve Rudolph wrote:

> Does anyone have a portscan.log utility so I can see what Ips are scanning
> and which ports they are scanning?

Other than 'tail -f portscan.log'?  ;-)  Not that I know of...

You could dump them into ACID, but there's no packet info.

One thing that's useful in that case is the 'root-tail' program.  Have it do
the tail -f in your X window root.

Cheers!

-----
Erek Adams
Nifty-Type-Guy
TheAdamsFamily.Net





More information about the Snort-users mailing list