Follow-up to this one. Please add my new AOLIM screenname into your
If you are using a mac, and use iChat, please let me know. If you
add me into your IM system, please msg me and let me know who you are.
On Jul 10, 2005, at 5:56 PM, Kevin Johnson wrote:
> Hi all-
> We have added a couple members and its been a little quiet , so I
> thought I should have one of my ramble emails...<g>
> First, I would like to welcome everyone that has joined the team
> the mailing list since my last ramble. For the record, you can
> reach me
> via instant messenger on the following:
> - kjohnson@... -- MSN
> - linuxseron -- AIM
> - linuxseron -- Yahoo
> I am also usually idling in the IRC channel #secureideas on
> freenode.net. Feel free to join up.... If you IM me, please let me
> who you are the first time you do it! Thanks.
> Second, 2.x is coming along in my head and on my system. Hopefully I
> will get it into CVS by tomorrow night. To show my ignorance, can
> anyone tell me the easiest way to empty a project in CVS? I had built
> the directory structure for 2.x before and since then it has
> Third, I have been talking with a DBA type person who will be helping
> ensure that the new schema and the queries perform to the best that is
> possible.<g> We are trying to make it so that the schema performs for
> Snort but is extensible for other data sources.
> Fourth, is everyone comfortable with how to check in and out of CVS?
> Fifth, I would like to get the web site updated. Especially the FAQ
> section. Remember that it is the website-base project. If you update
> anything, just let me know and I will promote it to the shell
> servers at
> Sixth, what types of data sources would you like to include in the
> analysis engine? We have already received information for various
> IDS systems. I would also like to be able to accept things like
> and other log sources.
> I would like to discuss some of the ideas for 2.x now. Remember that
> all of this is pie in the sky and it will need to be built in a way
> we can release things that are functional while enabling us to bolt on
> the features as we build them. Also keep in mind that no matter how
> complex we make the system and the number of features, I think we need
> to include the basic web interface that is similar to what we support
> currently. My reasoning is that most people use BASE because of the
> simplicity of getting it running. We don't want to lose that.<g>
> The basic directory structure would be split between /base/
> and /based/. /based/ would be the server side interface to the data.
> It would accept requests via HTTP POST and answer with various
> streams that the clients would be able to interpret. Each of these
> directories would also include a contrib directory for various scripts
> and tools that people send in.
> Does anyone have any experience with AJAX? I see where we could
> use it
> to create the interface. Except instead of XML, we would use a
> delimited stream, since I don't think we want the weight of XML?
> Also, what other projects could we make use of, that you guys see, to
> make things easier for us? For example, we are going to continue
> ADODB and PEAR::ImageGraph. I have also seen various user auth
> and interface type projects. Ideas?
> I think that is enough for now....<g> I will try to follow up with
> other things as I draft them up. Please feel free to comment.
> BASE Project Lead
> The next step in IDS analysis!