snort-inline-users

[Snort-inline-users] clamav - priority?

[<ka...@ez...>]

Hi,

Snort(inline) does a great job with prioritizing attacks -
but spp_clamav does not put priority on anything. This kind
of breaks many of the reporting tools. I was wondering if
there might be a way to just make all clamav alerts show as
priority 1 so things like snort_report, snorter and the
like, will put them at the top?

thanks
Kat

Re: [Snort-inline-users] clamav - priority?

[Will M. <wil...@gm...>]

We will look into this for the 2.3.0 release of snort_inline.

Regards,

Will


On Wed, 05 Jan 2005 07:29:40 -0500, ka...@ez... <ka...@ez...> wrote:
> Hi,
> 
> Snort(inline) does a great job with prioritizing attacks -
> but spp_clamav does not put priority on anything. This kind
> of breaks many of the reporting tools. I was wondering if
> there might be a way to just make all clamav alerts show as
> priority 1 so things like snort_report, snorter and the
> like, will put them at the top?
> 
> thanks
> Kat
> 
> -------------------------------------------------------
> The SF.Net email is sponsored by: Beat the post-holiday blues
> Get a FREE limited edition SourceForge.net t-shirt from ThinkGeek.
> It's fun and FREE -- well, almost....http://www.thinkgeek.com/sfshirt
> _______________________________________________
> Snort-inline-users mailing list
> Sno...@li...
> https://lists.sourceforge.net/lists/listinfo/snort-inline-users
>