Monday, November 05, 2007

Daemonlogger 1.0 released


Daemonlogger 1.0 is available on my user page on snort.org. It's got a couple new features but nothing major, if you're a Daemonlogger fan it's definitely worth a download!

Labels: , ,

6 Comments:

At 3:25 PM, Anonymous Anonymous said...

Are you going to update http://www.snort.org/dl/daemonlogger?

I'll be updating the FreeBSD port of it soon. :)

 
At 8:45 PM, Blogger Martin Roesch said...

The link has been updated, sorry for the oversight.

 
At 8:54 PM, Blogger wxs said...

Not a big deal, but I noticed this... :)


--- daemonlogger.c.orig 2007-11-08 20:56:27.000000000 -0500
+++ daemonlogger.c 2007-11-08 20:56:36.000000000 -0500
@@ -108,7 +108,7 @@
#define ERROR 1
#define STDBUF 1024
#define GIGABYTE 1 << 30
-#define VERSION "0.91"
+#define VERSION "1.0"

typedef enum {
MINUTES=1,

 
At 11:19 PM, Blogger Martin Roesch said...

Oops, looks like we need version 1.0.1 release. :)

 
At 6:05 PM, Anonymous Anonymous said...

Do you see any problems doing a ring buffer capture with this on a server also running snort? The idea being that you could always look at full traffic going by for rolling time frame.

Thanks.
Love the tools.

 
At 11:23 AM, Blogger Martin Roesch said...

JAH: I don't see any problem doing that, there would be some performance impact but there's no reason that it wouldn't work.

 

Post a Comment

<< Home