[Snort-users] Alternative to BASE

Stephen Mullins steve.mullins.work at ...11827...
Wed Apr 28 12:27:33 EDT 2010


As an analyst I can tell you that Sguil is the best IDS analysis front
end that I have ever seen.  It blows anything web based out of the
water.

On Wed, Apr 28, 2010 at 11:54 AM, Curt Shaffer <cshaffer at ...11827...> wrote:
> What is everyone using out there instead of BASE? I know a lot of the
> newer documentation on installing Snort is mentioning BASE quite a bit
> even though it seems like development has not really progressed and
> the mailing list is a dead SPAM bed.
>
> The reason I am asking is because we just upgraded one of our sensors
> to 2.8.6 using Barnyard (tried barnyard2 as well), and we are not
> getting data to the database from that sensor now. When we tried
> Barnyard2 it started to log in the database but died even though the
> processes are still running. The other sensors are reporting back as
> well without an issue.
>
> I know this isn't a Barnyard or BASE list, but I just wanted to get a
> general snort user consensus, or if anyone else that upgraded snort
> this past week is seeing this as well.
>
> Curt
>
> ------------------------------------------------------------------------------
> _______________________________________________
> Snort-users mailing list
> Snort-users at lists.sourceforge.net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users
>




More information about the Snort-users mailing list