[Snort-users] Integrate Snort with Remedy, Anyone Please???
mccusker at ...10962...
Thu Feb 12 09:37:04 EST 2004
I would put some type "air-gap" somewhere in the
overall security operations of your ticket system.
During DOS exploits you may be generating lots of ticks,
Maybe use ACID alert capabilities, and wrap the creation
of an alert group with the creation of a ticket
in your Trouble Ticket System.
>My snort IDS on Solaris 8 has been running more
>stable, and in better control now.
>I'm thinking of integrating Snort alerts with Trouble
>Ticket Systmes - specifically Remedy, in order to be
>monitored together with other type of tickets, and be
>tracked the progress of resolving issues detected by
>Has anyone done the similar things, or know better to
>offer any suggestions/comments/places to look further
>I will share my results if I can make progress on this
>Thank you in advace!
>Do you Yahoo!?
>Yahoo! Finance: Get your refund fast by filing online.
>SF.Net is sponsored by: Speed Start Your Linux Apps Now.
>Build and deploy apps & Web services for Linux with
>a free DVD software kit from IBM. Click Now!
>Snort-users mailing list
>Snort-users at lists.sourceforge.net
>Go to this URL to change user options or unsubscribe:
>Snort-users list archive:
More information about the Snort-users