RE: New to the lists and snort

["Ricardo, Gerson" <gricardo () gableseng com>]

You can always use snortcenter to setup and rapidly configure/re-deploy snort agents using multiple rulesets.  As an 
added bonus, remote agents communicate via SSL to the primary host allowing for an expansive IDS system. ( 
http://users.pandora.be/larc/ )

gerson j. ricardo 
network engineer 
Gables Engineering, Inc. 


-----Original Message-----
From: Snow Jacob C KPWA [mailto:JacobSC () kpt nuwc navy mil]
Sent: Thursday, January 30, 2003 2:36 PM
To: 'snort-users () lists sourceforge net'
Subject: [Snort-users] New to the lists and snort


I am new to this list as well as to snort.  I am taking over an NIDS from someone that currently had it up and running. 
 Currently we have taken it down to ensure that it is secure since he left and has passwords.  We currently have a 
system that is running on Linux 7.3 with a MySQL database backend that is used to consolidate the hits (on a different 
machine) and APACHE and ACID for viewing and administration.  We would like to add a second sensor and have all of the 
hits or detections consolidated into the one SQL database for analysis and report generation.  I have a couple of 
questions regarding this issue first and foremost is it possible to accomplish all of this using a windows-based 
version of snort and what do I need to do to add another sensor to the system.
Any help is greatly appreciated, and thanx in advance. 
Thank you, 
Jacob Snow 
jacobsc () kpt nuwc navy mil 
(360)315-3487 
NAVSEA Intern 


-------------------------------------------------------
This SF.NET email is sponsored by:
SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See!
http://www.vasoftware.com
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users