[Snort-users] ACID Dates

Joel Esler eslerj at ...9426...
Tue Feb 1 05:55:35 EST 2005


Just to clarify, BASE is a FORK of ACID, not an extension.  

On Mon, 2005-01-31 at 07:59 -0800, Michael Steele wrote:

> BASE is an extension of ACID. Although you may not see visible changes, the
> code has been updated, and there have been enhancements added. As far as the
> time to refresh the database; it has always been there and that could be a
> great concern to many. My suggestion is to keep the database down to under
> 300k alerts and increase memory to 1GB. I really don't think there is much
> that can be done here, other then changing the schema of the database, and
> the way BASE access the new database schema.
> 
> I've never tried OpenAanval, so I really can't comment. I know it's tied to
> the commercial product Aanval, and there are usage restrictions, unlike ACID
> or BASE which have none. That's why my guides continue to be distributed
> with BASE as the Console of our choice.
> 
> Kindest regards, 
> Michael...
> 
> WINSNORT.com Management Team Member
> -- 
> Pick up your FREE Windows or UNIX Snort installation guides       
> mailto:support at ...9077...
> Website: http://www.winsnort.com
> Snort: Open Source Network IDS - http://www.snort.org
> 
> 
> > -----Original Message-----
> > From: snort-users-admin at lists.sourceforge.net [mailto:snort-users-
> > admin at lists.sourceforge.net] On Behalf Of Wes Young
> > Sent: Monday, January 31, 2005 5:58 AM
> > To: Chris Vaughan
> > Cc: Dave C; snort-users at lists.sourceforge.net
> > Subject: Re: [Snort-users] ACID Dates
> > 
> > -----BEGIN PGP SIGNED MESSAGE-----
> > Hash: SHA1
> > 
> > I run them both, I don't think either one is better than the other, they
> > both have very powerful features.. Aanval has a great way of managing
> > alerts and sifting through large amounts of data, but it has problems
> > extracting data into emails etc... this is where I think BASE can play a
> > very good role with it's alert groups etc.... IMO running both
> > simultainiously will give you a very powerful combo.....
> > 
> > Chris Vaughan wrote:
> > | I looked at the website, and it looks a lot like ACID.
> > |
> > | What do you like about BASE so much more? What are it's advantages
> > over ACID?  What about compared to OpenAanval?
> > |
> > |  -----Original Message-----
> > | From: 	snort-users-admin at lists.sourceforge.net
> > [mailto:snort-users-admin at lists.sourceforge.net]  On Behalf Of Dave C
> > | Sent:	Wednesday, January 26, 2005 6:17 PM
> > | To:	snort-users at lists.sourceforge.net
> > | Subject:	Re: [Snort-users] ACID Dates
> > |
> > | Dump ACID and use BASE
> > | http://secureideas.sourceforge.net/
> > |
> > | ----- Original Message -----
> > | From: "James M. Driskell" <jdriskell at ...8221...>
> > | To: <snort-users at lists.sourceforge.net>
> > | Sent: Wednesday, January 26, 2005 4:50 PM
> > | Subject: [Snort-users] ACID Dates
> > |
> > |
> > |
> > |>Hello List,
> > |>
> > |>I was running some Snort reports this morning using the ACID interface
> > and
> > |>I
> > |>noticed that the drop-down year selection window only goes up to 2004.
> > |>I'm
> > |>using ACID v0.9.6b23.  Any ideas on how to fix this?
> > |>
> > |>Thanks,
> > |>
> > |>Jim Driskell
> > |>
> > |
> > |
> > |
> > |
> > |
> > | -------------------------------------------------------
> > | This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting
> > | Tool for open source databases. Create drag-&-drop reports. Save time
> > | by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc.
> > | Download a FREE copy at http://www.intelliview.com/go/osdn_nl
> > | _______________________________________________
> > | Snort-users mailing list
> > | Snort-users at lists.sourceforge.net
> > | Go to this URL to change user options or unsubscribe:
> > | https://lists.sourceforge.net/lists/listinfo/snort-users
> > | Snort-users list archive:
> > | http://www.geocrawler.com/redir-sf.php3?list=snort-users
> > |
> > |
> > |
> > |
> > | -------------------------------------------------------
> > | This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting
> > | Tool for open source databases. Create drag-&-drop reports. Save time
> > | by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc.
> > | Download a FREE copy at http://www.intelliview.com/go/osdn_nl
> > | _______________________________________________
> > | Snort-users mailing list
> > | Snort-users at lists.sourceforge.net
> > | Go to this URL to change user options or unsubscribe:
> > | https://lists.sourceforge.net/lists/listinfo/snort-users
> > | Snort-users list archive:
> > | http://www.geocrawler.com/redir-sf.php3?list=ort-users
> > |
> > |
> > 
> > - --
> > Wes Young
> > Network Secuity Analyst
> > University at Buffalo
> > GPG Key: http://saxjazman9-security.blogspot.com/2005/01/gpg-key.html
> > -----BEGIN PGP SIGNATURE-----
> > Version: GnuPG v1.2.6 (GNU/Linux)
> > 
> > iD8DBQFB/jlP1M5o0FsrrbERAqyDAJ981klq6LR4eI8FlLdSKGdZV0+axQCfXvQ5
> > xhTy7RwyfYvtHFAyxhpPafY=
> > =21HH
> > -----END PGP SIGNATURE-----
> > 
> > 
> > -------------------------------------------------------
> > This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting
> > Tool for open source databases. Create drag-&-drop reports. Save time
> > by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc.
> > Download a FREE copy at http://www.intelliview.com/go/osdn_nl
> > _______________________________________________
> > Snort-users mailing list
> > Snort-users at lists.sourceforge.net
> > Go to this URL to change user options or unsubscribe:
> > https://lists.sourceforge.net/lists/listinfo/snort-users
> > Snort-users list archive:
> > http://www.geocrawler.com/redir-sf.php3?list=snort-users
> 
> 
> 
> 
> 
> 
> -------------------------------------------------------
> This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting
> Tool for open source databases. Create drag-&-drop reports. Save time
> by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc.
> Download a FREE copy at http://www.intelliview.com/go/osdn_nl
> _______________________________________________
> Snort-users mailing list
> Snort-users at lists.sourceforge.net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users

-- 
Joel Esler <eslerj at ...9426...>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20050201/330c1356/attachment.html>


More information about the Snort-users mailing list