[Dshield] DShield client for snort 2.x?

Phil.Rodrigues@uconn.edu Phil.Rodrigues at uconn.edu
Wed Aug 6 20:05:13 GMT 2003


Hi,

We would like to share data with DShield.  The only log parser we saw for 
Snort was for 1.8, and it requires some re-working for Snort 2.x.  Does 
anyone have a copy of a client for the latest version of Snort?  No sense 
in re-inventing the wheel...

Would running iptables in logging mode give better results?  Do you care 
more about the ips/ports that are hitting us or the alerts they are 
triggering?

Thanks in advance!

Phil

=======================================
Philip A. Rodrigues
Network Analyst, UITS
University of Connecticut

email: phil.rodrigues at uconn.edu
phone: 860.486.3743
fax: 860.486.6580
web: http://www.security.uconn.edu
=======================================




More information about the list mailing list