[Snort-users] Snort vs. Barnyard2 performance logging to a database

Y M snort at ...15979...
Tue Feb 11 06:11:49 EST 2014


Hi Ido,
 
Snort's database output plugin has been deprecated since Snort 2.9.3, which is EOL. For more info:
http://blog.snort.org/2012/07/database-output-is-dead-rip.html
http://www.snort.org/vrt/rules/eol_policy
 
YM
 
From: Ido.Dubrawsky at ...16687...
To: snort-users at lists.sourceforge.net
Date: Tue, 11 Feb 2014 10:38:07 +0000
Subject: [Snort-users] Snort vs. Barnyard2 performance logging to a database

Has anyone done any performance tests benchmarking whether it’s better for the Snort IDS process to insert alerts directly into a database (MySQL or PostGREsql) or whether performance is better if Snort writes the unified2 file and lets Barnyard2 insert alerts into a database?   A quick Google search hasn’t easily revealed anything relevant at the moment. Thanks,Ido Ido DubrawskySr. Principal Systems EngineerSecurity Engineering Team LeadIdo.Dubrawsky at ...16691... (O)/301-928-0020(M)       P Please consider the impact to the environment and your responsibility before printing this e-mail. 
------------------------------------------------------------------------------
Android apps run on BlackBerry 10
Introducing the new BlackBerry 10.2.1 Runtime for Android apps.
Now with support for Jelly Bean, Bluetooth, Mapview and more.
Get your Android app in front of a whole new audience.  Start now.
http://pubads.g.doubleclick.net/gampad/clk?id=124407151&iu=/4140/ostg.clktrk
_______________________________________________
Snort-users mailing list
Snort-users at lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news! 		 	   		  
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20140211/d854d7f2/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 124 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20140211/d854d7f2/attachment.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image002.jpg
Type: image/jpeg
Size: 4585 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20140211/d854d7f2/attachment.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image003.jpg
Type: image/jpeg
Size: 1675 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20140211/d854d7f2/attachment-0001.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image004.jpg
Type: image/jpeg
Size: 1586 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20140211/d854d7f2/attachment-0002.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image005.jpg
Type: image/jpeg
Size: 1696 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20140211/d854d7f2/attachment-0003.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image006.jpg
Type: image/jpeg
Size: 1656 bytes
Desc: not available
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20140211/d854d7f2/attachment-0004.jpg>


More information about the Snort-users mailing list