[Snort-users] Re: Snort and high performance networks
snort at ...10572...
Tue May 25 17:46:04 EDT 2004
Simply use the search link in ACID to find alerts older than a certain
date, then delete the entire query using the menu at the bottom of the
search results page.
You may have to set the php timeout value in acid_conf to a fairly
high number if you wish to delete alot of alerts.
On Tue, 25 May 2004 09:49:03 +0300
Micha Silver <micha at ...5381...> wrote:
>>It is also a good idea to prune out the old alerts then run an
>>on the tables.
>How exactly do I prune the database? i.e. From which tables should I
>delete old records?
More information about the Snort-users