[despammed] Re: [Snort-users] Future features???

Ed McMan edmcman at ...2893...
Sun May 12 15:38:02 EDT 2002


How do you use the email reporting?  I have never seen such a feature.
-------------------------------------------------------------
|   Eddie J Schwartz <EdMcMan at ...5792...> http://www.m00.net   |
|   AIM: The Cypher ICQ: 35576339 YHOO: edmcman2 MSN: ^^    |
| "We Trills have an expression--at forty, you think you    |
| know everything.  At four hundred, you realize you know   |
|         nothing." - Dax, Star Trek Deep Space 9           |
-------------------------------------------------------------
----- Original Message -----
From: "Wayne T Work" <wayne at ...3179...>
To: <Paul.Fiero at ...5820...>; <snort-users at lists.sourceforge.net>
Sent: Sunday, May 12, 2002 12:32 PM
Subject: [despammed] Re: [Snort-users] Future features???


> Snort itself has real time alerting using Email, Syslog, SNMP trap alerts.
> Just need to set up an Email account dedicated to this system. Or you can
> use Unix or Windows (using Kewi Syslogd for Windows) to except logs to it
> and alert on priority. You could write a Perl script to scan  the syslogs
> as they come in and Email on certain criteria in real time. Good luck!!
>
> At 02:39 PM 5/9/2002 -0500, Paul.Fiero at ...5820... wrote:
> >I was curious to know if anyone had heard anything about potential for
real
> >time alerts being available in future versions of ACID.  I am in dire
need
> >of the facility and would love to see this feature added.






More information about the Snort-users mailing list