Monkey.org Developments
Honeyd Mailing List: Re: centralizing logs

Honeyd Resources

Main - News - Forums 
Download Releases
General Information [Mirror]
Frequently Asked Questions
Sample Configurations
Tools - Service Scripts
Blog - New
Links, Press, etc.
Mailing List Archive
Acknowledgments


Honeyd Research

Immunization Against Worms
Understanding Spam
Performance

Honeypot Resources

Honeypot Background
Honeypot Concepts

Honeypot Books


Virtual Honeypots,
Niels Provos and Thorsten Holz

Happy Hacking

Reduce wishlists
Leave a tip with PayPal

Support Honeyd

Search:
Keywords:

Search Amazon

  		 

Re: centralizing logs

From: Michael Boman <michael_at_ayeka.dyndns.org>
Date: Sat Mar 13 10:50:22 2004



On Thu, 2004-03-11 at 20:44, dcneting wrote:


> is there any tool(open source/commercial) that can be use to centralized


> every log into 1 database? Im using a lot of tools here like ethereal,


> tcpdump,snort..bla bla bla...so, it is hard for me to see the log one by


> one...



The IDMEF proposed standard (latest version available at


ftp://ftp.ietf.org/internet-drafts/draft-ietf-idwg-idmef-xml-11.txt) is


the work to create such a integration.



So far I only know of Prelude (http://www.prelude-ids.org) that actually


using it against a database, but there are other tools using IDMEF as


means to report events.



-- 
Michael Boman





Received on Sat Mar 13 2004 - 10:50:22 PST




















Search For Information











Google








 Search WWW  Search www.honeyd.org 



















NB: This is a filtered version of the Honeypots mailing list. Only posts that concern Honeyd are shown here. For more recent discussions visit the forums.

 











Last modified: May 13 2005 06:39:36 PM


Copyright (c) 1999-2004 by Niels Provos

Don't access my pirated music.