[Snort-users] Re: Log analysis without ACID

Kreimendahl, Chad J Chad.Kreimendahl at ...4716...
Thu Apr 29 08:17:06 EDT 2004


There are a few options out there... I think Demarc is most well
known... The alternative is to store your logs in a database and create
your own reports. 

-----Original Message-----
From: Frank Barton [mailto:pauling at ...7195...] 
Sent: Thursday, April 29, 2004 7:07 AM
To: snort-users at lists.sourceforge.net
Subject: [Snort-users] Re: Log analysis without ACID

Personaly, I'm looking for a basic summary of
a)a basic list of there were N hits of type X (sorted by i) severity and

ii) number of occurances 
b)Number of Hits per IP address

> Message: 1
> Date: Tue, 27 Apr 2004 16:33:59 -0500
> From: Michael Sconzo <msconzo at ...5072...>
> To: Michael Steele <michaels at ...9077...>
> Cc: snort-users at lists.sourceforge.net
> Subject: Re: [Snort-users] Log analysis without ACID
> 
> On Tue, Apr 27, 2004 at 12:58:11PM -0700, Michael Steele wrote:
> > ACID does not generate report logs.
> > 
> > I have yet to find one. It would be nice to find one that can
generate
> > weekly, monthly and yearly reports from the Snort log.
> 
> What kind of information are you looking for in the report... ?
> 
> 
> -=Mike





More information about the Snort-users mailing list