[Snort-users] Alternative to BASE

Dustin Webber dustin.webber at ...11827...
Wed Apr 28 12:35:56 EDT 2010


I use snorby http://www.snorby.org but must suggest you consider sguil.

Best Regards,

Dustin Webber
Sent from iPhone, please excuse any typos.


On Apr 28, 2010, at 11:54 AM, Curt Shaffer <cshaffer at ...11827...> wrote:

> What is everyone using out there instead of BASE? I know a lot of the
> newer documentation on installing Snort is mentioning BASE quite a bit
> even though it seems like development has not really progressed and
> the mailing list is a dead SPAM bed.
>
> The reason I am asking is because we just upgraded one of our sensors
> to 2.8.6 using Barnyard (tried barnyard2 as well), and we are not
> getting data to the database from that sensor now. When we tried
> Barnyard2 it started to log in the database but died even though the
> processes are still running. The other sensors are reporting back as
> well without an issue.
>
> I know this isn't a Barnyard or BASE list, but I just wanted to get a
> general snort user consensus, or if anyone else that upgraded snort
> this past week is seeing this as well.
>
> Curt
>
> ---
> ---
> ---
> ---------------------------------------------------------------------
> _______________________________________________
> Snort-users mailing list
> Snort-users at lists.sourceforge.net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users




More information about the Snort-users mailing list