I don't mean to rain on any parades, but...ICECap isn't great at reporting either. I've got a NICE set of SQL queries that I use against my ICECap database, modularized, in case anyone's interested I can discuss offline?
Good luck, Ralph Los Sr. Security Engineer, Trainer EnterEdge Technology - Atlanta (770) 955-9899 x.206 [EMAIL PROTECTED] ::: -----Original Message----- ::: From: Rob Keown [mailto:[EMAIL PROTECTED]] ::: Sent: Saturday, September 07, 2002 10:31 AM ::: To: 'Enyart.Pat'; 'Super snort '; 'Lanzilotta, Chris S. ::: (MBS) '; ''[EMAIL PROTECTED]' '; '[EMAIL PROTECTED] ' ::: Subject: RE: Site Protector Reporting ::: ::: ::: ::: TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of ::: your message to [EMAIL PROTECTED] Contact ::: [EMAIL PROTECTED] for help with any problems! ::: ------------------------------------------------------------ ::: ---------------- ::: ::: Have you seen there IceCap product? We were Network Ice ::: customers who transitioned to ISS. I have no idea if they ::: have plans to integrate the original RealSecure offerings ::: into it. It is a graphical based reporting and analysis ::: tool. Maybe someone from ISS can address this. ::: ::: ::: -----Original Message----- ::: From: Enyart.Pat [mailto:[EMAIL PROTECTED]] ::: Sent: Friday, September 06, 2002 4:50 PM ::: To: 'Super snort '; 'Lanzilotta, Chris S. (MBS) '; ::: ''[EMAIL PROTECTED]' '; '[EMAIL PROTECTED] ' ::: Subject: RE: Site Protector Reporting ::: ::: ::: ::: TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of ::: your message to [EMAIL PROTECTED] Contact ::: [EMAIL PROTECTED] for help with any problems! ::: ------------------------------------------------------------ ::: ---------------- ::: ::: I simply use access as a front end with ODBC connectivity ::: to the SQL database and create customised reporting based ::: on queries I have created. ::: ::: -----Original Message----- ::: From: Super snort ::: To: Lanzilotta, Chris S. (MBS); '[EMAIL PROTECTED]'; ::: [EMAIL PROTECTED] ::: Sent: 9/6/2002 3:34 PM ::: Subject: RE: Site Protector Reporting ::: ::: ::: TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of ::: your message to [EMAIL PROTECTED] Contact ::: [EMAIL PROTECTED] for help with any problems! ::: ------------------------------------------------------------ ::: ------------ ::: ---- ::: ::: This is one of my biggest beef with ISS. They have a ::: good engine in detecting intrusion, but does an ::: absolutely poor job in building useful customized ::: reports. Reports generated from WGM presents a lot of ::: repetitive information, which clutters up the report for a ::: security analysis. ::: ::: ISS provides a tool called Fast Analysis, which I ::: personally rename to "Slow and cumbersome analysis". ::: Reports generated cannot be automatically saved into a ::: different format. To export the format, you will have to ::: cut and paste into a spreadsheet, then "saved as" a ::: different format. ::: ::: ISS, wake up! We need useful information, not raw ::: data! Provide us a simple front end that will allow ::: us to query the database, and customize the reporting ::: layout. Recipient of these report varies from ::: management to security analysis. Without this ::: function, the presence of IDS is almost useless! ::: ::: Snort ::: ::: Snort ::: --- "Lanzilotta, Chris S. (MBS)" ::: <[EMAIL PROTECTED]> wrote: ::: > ::: > TO UNSUBSCRIBE: email "unsubscribe issforum" in the ::: > body of your message to ::: > [EMAIL PROTECTED] Contact [EMAIL PROTECTED] ::: > for help with any problems! ::: > ::: ------------------------------------------------------------ ::: ------------ ::: ---- ::: > ::: > I would kill for this... Well maybe not kill, but ::: > you get the point!!! ::: > ::: > This is just one of the sorely missed features that ::: > should have been ::: > released in SiteProtector from the start. I keep ::: > hearing it will be in the ::: > next release, whenever that is. ::: > ::: > -----Original Message----- ::: > From: Simon Desmeules [mailto:[EMAIL PROTECTED]] ::: > Sent: Thursday, September 05, 2002 2:51 PM ::: > To: [EMAIL PROTECTED] ::: > Subject: Site Protector Reporting ::: > ::: > ::: > ::: > TO UNSUBSCRIBE: email "unsubscribe issforum" in the ::: > body of your message to ::: > [EMAIL PROTECTED] Contact [EMAIL PROTECTED] ::: > for help with any ::: > problems! ::: > ::: ------------------------------------------------------------ ::: ------------ ::: ---- ::: > ::: > Hi, ::: > ::: > Site Protector doesn't come along with the reporting ::: > function and wanted to ::: > know if anybody has developed a custom Crystal ::: > Report (.rpt) file to work ::: > with the Site Protector RealSecureDB. If for ::: > example I took a report policy ::: > from the workgroup 6.6 manager and imported it into ::: > Crystal Reports, is ::: > there a way to change all the database values to ::: > point to the new ::: > RealSecureDB? ::: > ::: > best regards, ::: > Simon. ::: > ::: > ::: > ::: > ::: > ::: ::: ::: __________________________________________________ ::: Do You Yahoo!? ::: Yahoo! Finance - Get real-time stock quotes http://finance.yahoo.com ::: ***************************************************************** ::: The information transmitted is intended solely for the ::: individual or entity to which it is addressed and may ::: contain confidential and/or privileged material. Any ::: review, retransmission, dissemination or other use of or ::: taking action in reliance upon this information by persons ::: or entities other than the intended recipient is ::: prohibited. If you have received this email in error please ::: contact the sender and delete the material from any computer. ::: **************************************************************** ::: ::: ::: ::: :::
smime.p7s
Description: application/pkcs7-signature
