[Snort-users] How to change Snort-Mysql timestamp?
This is a discussion on [Snort-users] How to change Snort-Mysql timestamp? within the Snort forums, part of the System Security and Security Related category; This is a multi-part message in MIME format. ------=_NextPart_000_0113_01C47E28.EE61E080 Content-Type: text/plain; charset="iso-8859-1&...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
08-09-2004
|
|||
|
|||
[Snort-users] How to change Snort-Mysql timestamp?
This is a multi-part message in MIME format.
------=_NextPart_000_0113_01C47E28.EE61E080 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hi! I am a new bird of Snort. I have one question about how to = change timestamp of Snort schema. My question is, Snort provide create_mysql.sql in the package. In = the event table, timestamp is in Datatime type, which in my application = is not precise. I need keep the fraction second part in my software.=20 My question is : Can I change the Snort_Mysql timestamp type? Is = it allowed in Snort? If yes, which date/time is a good choice. Thanks a lot for your time and effort! Best regards! Andy Liu=20 =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3 D=3D=3D=3D=3D=3D=3D=3D=3D= =3D Anyi Liu=20 Ph.D student Department of Information and Software Engineering =20 George Mason University=20 Fairfax, VA, 22032 ------=_NextPart_000_0113_01C47E28.EE61E080 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META http-equiv=3DContent-Type content=3D"text/html; = charset=3Diso-8859-1"> <META content=3D"MSHTML 6.00.2800.1458" name=3DGENERATOR> <STYLE></STYLE> </HEAD> <BODY bgColor=3D#ffffff> <DIV><FONT face=3DArial size=3D2> <DIV><FONT face=3DArial size=3D2> = Hi! I am a new=20 bird of Snort. I have one question about how to change timestamp of = Snort=20 schema.</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2> My = question=20 is, Snort provide create_mysql.sql in the package. In the event table, = timestamp=20 is in Datatime type, which in my application is not precise. I need keep = the=20 fraction second part in my software. </FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2> My = question is=20 : Can I change the Snort_Mysql timestamp type? Is it allowed in Snort? = If yes,=20 which date/time is a good choice.</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2> = Thanks a lot=20 for your time and effort!</DIV> <DIV><BR>Best regards!<BR>Andy Liu <BR></DIV></FONT></FONT></DIV> <DIV><FONT face=3DArial = size=3D2><BR>=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= 3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D<BR>Anyi Liu <BR>Ph.D=20 student<BR>Department of Information and Software Engineering = <BR>George=20 Mason University <BR>Fairfax, VA, 22032</FONT></DIV></BODY></HTML> ------=_NextPart_000_0113_01C47E28.EE61E080-- ------------------------------------------------------- SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33 Save 50% off Retail on Ink & Toner - Free Shipping and Free Gift. http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285 _______________________________________________ Snort-users mailing list Snort-users@lists.sourceforge.net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/...fo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.p...st=snort-users 
|
Linear Mode
