Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-IDS
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: query regarding snort customization

from [Kevin Johnson] Network Security [Permanent Link]
Subject: Re: query regarding snort customization
Date: Wed, 24 Nov 2004 00:55:23 -0500 
On Tue, 2004-11-23 at 01:04, gaurav_jindal@da-iict.org wrote:

Hi all,

I am looking for customized solution for snort, i.e I want to provide
access to read alerts from database based of grouping ip's , and to
provide access for reading alerts for these groups accordingly. If I
provide access to a particular user to access alerts, he should be able to
read alerts for the group of ip's I have allowed the access.
If someone has done it or it could be configured on ACID console, or some
open souce code for doing this is available,please suggest.

regards,
Gaurav


The BASE project, which is a forked version of ACID under active
development is working toward what you want.  The current version
supports user authentication.

Kevin
-------------------
BASE Project Lead
http://sourceforge.net/projects/secureideas
http://base.secureideas.net
The next step in IDS analysis!

Attachment: signature.asc
Description: This is a digitally signed message part

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: ISS Siteprotector as syslog server?, David Maynor
Previous by Thread:  query regarding snort customization, gaurav_jindal
Next by Thread:  ISS Siteprotector as syslog server?, Bowes, Ronald (EST)
Indexes:  [Date] [Thread] [Top] [All Lists]