[Snort-users] Snort + acid + mysql

Noble, Kevin Kevin.Noble at ...11200...
Fri Apr 2 12:24:11 EST 2004

The Activeworx seeks to be hit here as well, has some really neat sorting


-----Original Message-----
From: snort-users-admin at lists.sourceforge.net
[mailto:snort-users-admin at lists.sourceforge.net]On Behalf Of Michael Miller
Sent: Friday, 02 April, 2004 2:18 PM
To: Nils Fragoso; snort-users at lists.sourceforge.net
Subject: RE: [Snort-users] Snort + acid + mysql

I've had some success with 'IDS policy manager'. It runs on Windows, and
cannot run with emulation under linux, but it still might be something you
should look at. http://www.activeworx.com/idspm/ 
Further, there's also SnortCenter, but I haven't get it fully running, and
IDS policy manager does most of what I want. http://users.pandora.be/larc/ 

From: snort-users-admin at lists.sourceforge.net
[mailto:snort-users-admin at lists.sourceforge.net] On Behalf Of Nils Fragoso
Sent: Friday, April 02, 2004 10:38 AM
To: snort-users at lists.sourceforge.net
Subject: [Snort-users] Snort + acid + mysql
Hi Guys,
I've setup Snort, PHP, Apache, Mysql and Acid  on a Linux (RH 9.0). I've
followed an installation manual wrote by Patrick Harper, that I found on
www.internetsecurityguru.com, which, by the way, is a very good guide.
Snort is running fine and I'm able to get the "bad" packets.
But now I need to update the rules, what is the best way to do this? And how
can I do this?
How about to use Snort to stop the attacks? Is any way it can do this?
I'm not a Linux "super user", so please send me detailed instructions, if
you want to help me.
Thanks in advance.

More information about the Snort-users mailing list