[Snort-users] Snort Alert Description in BASE

chris mr chris.misztur at ...131...
Thu Sep 13 13:57:14 EDT 2007

I downloaded bleeding-edge rulesets and set them up in snort.conf. I also CAT sid-msg.map with bleeding-sid-msg-map.txt. 

However, when I open BASE I still get a generic Snort Alert... How can these be replaced with detail info on the signature? 

[local] [snort] Snort Alert [1:2002872:0] policy-violation 1(0%) 1 1 1 2007-09-13 17:42:39 2007-09-13 17:42:39 


Luggage? GPS? Comic books? 
Check out fitting gifts for grads at Yahoo! Search

More information about the Snort-users mailing list