First Previous Next Last         Home


UUASC Snort/Acid Presentation - getting alerts


Slide 34


Note blockquote> * modify this script to give it the snortviewer user's (or whatever you call it, just make sure the user only has select permissions) username & password for the mysql db, and an put it in cron. If there are new unique alerts it will give output, and thus you will get an email. Make sure you edit /etc/aliases
* oinkmaster: admin@domain.com
* put it in /usr/local/snortalert ; the user running it will need permissions to create files.
Created on Wednesday 30 June 2004 by Nicholas Bernstein with KPresenter