[Snort-users] Snort, Mysql purging

Jack Snedecor jsnedecor at ...10724...
Wed Dec 10 15:15:03 EST 2003

New user....


I have installed snort, mysql and acid per the published instructions.
Works great.

I am by no means an expert at any of these though.

What I have not found is a method to purge the database on a regular

I had a minor welchia virus this week that drove the database size way up.

 acid is taking mins. to build pages.  Can someone point me in the right


Jack Snedecor


VP, Network Operations Group

-----Original Message-----
From: Sp0oKeR Labs [mailto:spooker at ...10483...] 
Sent: Wednesday, December 10, 2003 6:47 PM
To: Grammer, Christopher S; snort-users at lists.sourceforge.net
Subject: Re: [Snort-users] Remote NIDS


At your snort.conf, in all sensors use:


output database: log, mysql, user=user_snort password=pass_snort
dbname=db_snort host=ip_server_mysql_acid


You can create the snort database with create_mysql at contrib/ directory .

Best Regards,



----- Original Message ----- 

From: Grammer, <mailto:christopher.grammer at ...7950...>  Christopher S 

To: snort-users at lists.sourceforge.net
<mailto:snort-users at lists.sourceforge.net>  

Sent: Wednesday, December 10, 2003 7:03 PM

Subject: [Snort-users] Remote NIDS


I am looking for a method to have remote NIDS log alerts to a central
SNORT/Acid box running MySQL and Redhat 9.0.

Anyone have a link for docs on this or recommendations?



More information about the Snort-users mailing list