[Snort-users] Secure Connection to transfer logs.

Garland, Ken R garlandkr at ...11827...
Thu Apr 29 14:18:02 EDT 2010


After chatting in #Snorby on freenode this is the route I'm going to be
taking as well.

Thanks.

On Thu, Apr 29, 2010 at 2:09 PM, Randal T. Rioux <randy at ...13561...>wrote:

> On Thu, April 29, 2010 12:54 pm, Garland, Ken R wrote:
> > I'm setting up a Snorby front-end and planning to send the snort logs to
> > it over the management interface. What would be considered a "best
> > practice" in regards to securely transferring the data.
> >
> > Using syslog-ng and ssl?
>
> I've used Stunnel for sending Barnyard(2) parsed unified(2) logs to a
> remote database server. Always a nice added layer of security.
>
> Randy
>
>
>
>
> ------------------------------------------------------------------------------
> _______________________________________________
> Snort-users mailing list
> Snort-users at lists.sourceforge.net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20100429/8a290769/attachment.html>


More information about the Snort-users mailing list