[Snort-users] Error mapping some Snort events

Angel Chiriboga angel.chiriboga at ...16764...
Wed Apr 2 10:12:07 EDT 2014


Hi,

 

I need your support, I have problems with some Snort events mapping.

 

I use barnyard2 for send the events to arcsight and Mysql (snorby), but the
"message" of some events doesnt arrive ok. The events with errors arrive in
the following way:

 

Snort Alert [x:xxxx:x]

 

I use the pulledpork for update de sid-msg.map every sunday, and my
barnyard2 script run correctly.

 

Thanks for your help.

 

Regards.

 

Ángel Chiriboga Torres | Security Specialist

Tel: (593 2) 2868-931

Cel: (593) 995093859  - (593) 958847386

 <http://www.digitalsecurity.com.ec/> http://www.digitalsecurity.com.ec



 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20140402/96345fbc/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.jpg
Type: image/jpeg
Size: 8334 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20140402/96345fbc/attachment.jpg>


More information about the Snort-users mailing list