[Snort-users] Archive alert from ACID/BASE

Esler, Joel - Contractor joel.esler at ...9426...
Mon Mar 21 09:31:17 EST 2005

You create an archive database the same say you create your primary
database, just call it something different, be sure and set the correct
permissions and add this as the archive database in base_conf.php

-----Original Message-----
From: snort-users-admin at lists.sourceforge.net
[mailto:snort-users-admin at lists.sourceforge.net] On Behalf Of Wayne Ho
Sent: Monday, March 21, 2005 12:18 PM
To: snort-users at lists.sourceforge.net
Subject: [Snort-users] Archive alert from ACID/BASE

Snort guru:

Can anyone walk me through how to "duplicate" the BASE
table/database schema to another database within the
MySQL, so that I can archive alerts to this
"secondary" database for longer retention? Which
tool/utility you use to archive alert?
I saw BASE can archive alerts (move) under action item
list. However, where I need to configure so those
alerts will be archived to proper location?

Many Thanks.


Do you Yahoo!? 
Yahoo! Small Business - Try our new resources site!

SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
Snort-users mailing list
Snort-users at lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
Snort-users list archive:

More information about the Snort-users mailing list