[Dshield] DShield client for snort 2.x?
Phil.Rodrigues at uconn.edu
Wed Aug 6 20:05:13 GMT 2003
We would like to share data with DShield. The only log parser we saw for
Snort was for 1.8, and it requires some re-working for Snort 2.x. Does
anyone have a copy of a client for the latest version of Snort? No sense
in re-inventing the wheel...
Would running iptables in logging mode give better results? Do you care
more about the ips/ports that are hitting us or the alerts they are
Thanks in advance!
Philip A. Rodrigues
Network Analyst, UITS
University of Connecticut
email: phil.rodrigues at uconn.edu
More information about the list