Re: Linksys alert messages

["Andrew R. Baker" <andrewb0x29a () yahoo com>]

Dragos, if you are intending on using snort to receive the SNMP traps that
the Linksys spits out, you should keep in mind that the packets have to be
decoded to have any meaning (and ASN.1 is annoying to write a decoder
for).
Feel free to ask me any questions about SNMP since i have worked with it a
lot more than any person should have to.

-A

--- Dragos Ruiu <dr () kyx net> wrote:
> It just occurred to me that snort on BSD/Linux
> might make a nice replacement for the Linksys 
> BEFSR?1 Windows client that logs their SNMP
> Alert messages.  The snort logs are a good place
> for me to stuff this info in any case.  Just before
> I go and build a keyword to log part of user packets
> in the alert message, I thought I'd ask here to
> avoid wheel reinvention.... Has anyone set up 
> anything like this before who can share any
> information?
>
> thanks,
> --dr 

__________________________________________________
Do You Yahoo!?
Make international calls for as low as $.04/minute with Yahoo! Messenger
http://phonecard.yahoo.com/

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
http://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users