[prev in list] [next in list] [prev in thread] [next in thread]
List: snort-sigs
Subject: [Snort-sigs] Alarm Question
From: undercoffer <undercoffer () umbc ! edu>
Date: 2002-04-15 1:13:47
[Download RAW message or body]
In addition to an alarm I would like to write the offending packet(s) from a
tcpdump file to a separate file.
Can I do this via the SNORT rules or do I need to make some programmatic
modification. If it is a rule, can anyone offer me an example, if
programmatically can anyone offer me some advice?
Thanks in Advance.
_______________________________________________
Snort-sigs mailing list
Snort-sigs@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic