[Snort-users] Base Barnyard and Unified Logs

Wes Young wcyoung at ...12754...
Mon Mar 14 14:59:45 EST 2005


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

....this almost looks like a mysql output re-write.....

Paul Schmehl wrote:
| --On Monday, March 14, 2005 05:49:56 PM -0500 Wes Young
| <wcyoung at ...12754...> wrote:
|
|>
|> I'm thinkin the reason why aanval seems to work is because it doesn't
|> even look at the SIG_ID, which BASE might.... I just can't find the code
|> to prove anything....(in BASE).
|>
| look in basedir/includes/base_action.php and base_signature.php.
|
| Paul Schmehl (pauls at ...6838...)
| Adjunct Information Security Officer
| The University of Texas at Dallas
| AVIEN Founding Member
| http://www.utdallas.edu
|
|

- --
Wes Young
Network Security Analyst
University at Buffalo
GPG Key: http://saxjazman9-security.blogspot.com/2005/01/gpg-key.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)

iD8DBQFCNhdA1M5o0FsrrbERAtMoAJ0QEtkKNtOy4rUXCtzYcJfA7fXDtACfd0Me
2JdCHfPu3uo4E+anGZH6RTs=
=fbjU
-----END PGP SIGNATURE-----




More information about the Snort-users mailing list