On Thu, Nov 15, 2012 at 5:57 AM, Dhana Sekar <[email protected]> wrote:
> Tool of the Day: Snort > > Snort is a libpcap-based packet sniffer/logger which can be used as > a lightweight network intrusion detection system. It features rules > based logging and can perform content searching/matching in > addition to being used to detect a variety of other attacks and > probes, such as buffer overflows, stealth port scans, CGI attacks, > SMB probes, and much more. Snort has a real-time alerting > capability, with alerts being sent to syslog, a separate "alert" file, or > even to a Windows computer via Samba. > This package provides the plain-vanilla version of Snort and does > not provide database (available in snort-pgsql and snort-mysql) > support. > It has lost it ability to support database as it needs to work on analyzing the traffic which is captured. barnyard2 is the program which takes the output of snort and updates the mysql database. -- Regards, Balasubramaniam Natarajan www.blog.etutorshop.com _______________________________________________ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
