[Snort-users] Snort Alert Description in BASE
chris.misztur at ...131...
Thu Sep 13 13:57:14 EDT 2007
I downloaded bleeding-edge rulesets and set them up in snort.conf. I also CAT sid-msg.map with bleeding-sid-msg-map.txt.
However, when I open BASE I still get a generic Snort Alert... How can these be replaced with detail info on the signature?
[local] [snort] Snort Alert [1:2002872:0] policy-violation 1(0%) 1 1 1 2007-09-13 17:42:39 2007-09-13 17:42:39
Luggage? GPS? Comic books?
Check out fitting gifts for grads at Yahoo! Search
More information about the Snort-users