RE: [Snort-users] Email Notification Methods?
This is a discussion on RE: [Snort-users] Email Notification Methods? within the Snort forums, part of the System Security and Security Related category; I wrote this script to solve that problem on all my Unix boxes. It works like a champ with Snort ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
02-05-2004
|
|||
|
|||
RE: [Snort-users] Email Notification Methods?
I wrote this script to solve that problem on all my Unix boxes. It works
like a champ with Snort as well. You can find it here: http://www.sun.com/bigadmin/scripts/...th-crit.sh.txt We might want to copy this to the Snort.org site for other's consumption? It can be modified to dig out any alert you choose. Best regards, Michael D. Peters Director of Security Services Lazarus Alliance michael.peters@lazarusalliance.com -----Original Message----- From: Michael Steele [mailto:michaels@winsnort.com] Sent: Wednesday, February 04, 2004 7:42 PM To: snort-users@lists.sourceforge.net Subject: RE: [Snort-users] Email Notification Methods? Swatch is acceptable. It should do everything you want. Kindest regards, The WINSNORT.com Management Team -- Pick up your FREE Windows or UNIX Snort installation guides mailto:support@winsnort.com Website: http://www.winsnort.com Snort: Open Source Network IDS - http://www.snort.org > -----Original Message----- > From: snort-users-admin@lists.sourceforge.net [mailto:snort-users- > admin@lists.sourceforge.net] On Behalf Of M. Morgan > Sent: Wednesday, February 04, 2004 11:26 AM > To: snort-users@lists.sourceforge.net > Subject: [Snort-users] Email Notification Methods? > > Hello all, > I running four snort boxes reporting to a central mysql server. I'd like > to have email notification for certain snort alerts if that is possible. > > I'm soliciting recomendations for software that can help me accomplish > this. > > Im currently looking at Swatch which seems to be trigger by syslog events, > any recomendations are welcome. > > Thanks, > Michael > > > ------------------------------------------------------- > The SF.Net email is sponsored by EclipseCon 2004 > Premiere Conference on Open Tools Development and Integration > See the breadth of Eclipse activity. February 3-5 in Anaheim, CA. > http://www.eclipsecon.org/osdn > _______________________________________________ > Snort-users mailing list > Snort-users@lists.sourceforge.net > Go to this URL to change user options or unsubscribe: > https://lists.sourceforge.net/lists/...fo/snort-users > Snort-users list archive: > http://www.geocrawler.com/redir-sf.p...st=snort-users ------------------------------------------------------- The SF.Net email is sponsored by EclipseCon 2004 Premiere Conference on Open Tools Development and Integration See the breadth of Eclipse activity. February 3-5 in Anaheim, CA. http://www.eclipsecon.org/osdn _______________________________________________ Snort-users mailing list Snort-users@lists.sourceforge.net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/...fo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.p...st=snort-users ------------------------------------------------------- The SF.Net email is sponsored by EclipseCon 2004 Premiere Conference on Open Tools Development and Integration See the breadth of Eclipse activity. February 3-5 in Anaheim, CA. http://www.eclipsecon.org/osdn _______________________________________________ Snort-users mailing list Snort-users@lists.sourceforge.net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/...fo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.p...st=snort-users 
|
Linear Mode
