Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Oracle Database Table Explanation

From: roman () danyliw com
Date: Tue, 29 May 2001 17:10:30 US/Eastern
Ray,


When snort generates
a detect it puts the header files into the appropriate tables but I never
get the snort_events table updated. 


What version of Snort?

I'm not sure what you mean by this statement.  "Header files"?
So is snort logging to the database or not?  A row should be 
added to the "event" table for every triggered alert. 


This table references a signatures
table but that table is empty also.


If both the signature and event table are empty then Snort
is definitely not logging to the database?  Any entries in the
"sensor" table?

Roman


---------------------------------------------
This message was sent using Voicenet WebMail.
      http://www.voicenet.com/webmail/



_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
http://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: