[Snort-users] Snort Alert Description in BASE

chris mr chris.misztur at ...131...
Thu Sep 13 13:57:14 EDT 2007


I downloaded bleeding-edge rulesets and set them up in snort.conf. I also CAT sid-msg.map with bleeding-sid-msg-map.txt. 

However, when I open BASE I still get a generic Snort Alert... How can these be replaced with detail info on the signature? 


[local] [snort] Snort Alert [1:2002872:0] policy-violation 1(0%) 1 1 1 2007-09-13 17:42:39 2007-09-13 17:42:39 



Thanks 
chris.


      ____________________________________________________________________________________
Luggage? GPS? Comic books? 
Check out fitting gifts for grads at Yahoo! Search
http://search.yahoo.com/search?fr=oni_on_mail&p=graduation+gifts&cs=bz




More information about the Snort-users mailing list