'Re: [Dragonidsuser] Alarm tool by signature score'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       dragonidsuser
Subject:    Re: [Dragonidsuser] Alarm tool by signature score
From:       jeffrey.stebelton () citi ! com
Date:       2008-04-09 12:03:17
Message-ID: OFE4F34220.FD2327FB-ON85257426.0041BF88-85257426.00423ABD () fund ! bisys ! com
[Download RAW message or body]

Only way I can think of doing that would be to create multiple alerts, each
with signatures in it with a different criticality.

Jeff Stebelton, GCFW GCIA GCIH CEH ESSE
BISO - Network Security
CITI Global Transaction Services
Voice:  614-470-8249
Cell: 614-203-2563
Email: jeffrey.stebelton \at/ citi.com


                                                                           
             "Doyle Simon"                                                 
             <Simon.Doyle@uk.f                                             
             ujitsu.com>                                                To 
             Sent by:                  <dragonidsuser@enterasys.com>       
             dragonidsuser-bou                                          cc 
             nces@enterasys.co                                             
             m                                                     Subject 
                                       [Dragonidsuser] Alarm tool by       
                                       signature score                     
             04/09/2008 05:00                                              
             AM                                                            
                                                                           
                                                                           
             Please respond to                                             
              Dragon IDS User                                              
                   List                                                    
             <dragonidsuser@en                                             
               terasys.com>                                                
                                                                           
                                                                           




Hi,

Does anyone know if it is possible to configure alarmtool in 7.2.4 to
send alerts based on the signature score, be it critical, high, medium
or low ?

If not, how are other people using alarmtool ? Are you even using it at
all ?

Regards,

Simon

_______________________________________________
Dragonidsuser mailing list
Dragonidsuser@enterasys.com


Disclaimer: The information contained in this message is confidential and intended \
only for the use of the individual or entity identified. If the reader of this \
message is not the intended recipient, any dissemination distribution or copying of \
the information contained in this message is strictly prohibited. If you received \
this message in error, please notify the sender immediately and destroy any copies \
you may have. Citi, Inc and its affiliates assume no liability for data tampering or \
loss of confidentiality, which occur outside its direct control as a result of the \
use of unencrypted communications methods.

_______________________________________________
Dragonidsuser mailing list
Dragonidsuser@enterasys.com


[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic