Hah, I amazed at how constant and active you remain here, always answering posts as quickly as possible, thanks a million; My answers below.
>I'm pretty sure that functionality is still part of barnyard2. Using >by2 for storing the alerts in something like this has been the only >sane choice for a while now. I missed out completely about by2's ability to output towards prelude, crap. thanks for the heads up. >I think it would be neat, I look forward to the diffs! I don't understand what you are asking me here. >Again, send diffs! I don't have any experience programming in perl, I've only done a few basic vbscripts at best. I'll keep trying to see what I can do with snorby + OSSEC as its the GUI that i've felt the most comfortable with. If I get anything concrete I'll post back here with what I did in case someone else stumbles upon the post. Thanks again for the quick replies Dan. --
