Barnyard logging settings
-
I want to enable Barnyard but I can not find any good documentation of how to configure logging what would you recommend for saving logs MySQL database, Syslog Output Settings or Bro-IDS Output Settings and how would you set up logging ?
-
Anyone?
-
Most folks have tried Snorby for logging. I did, but gave up eventually due to issues with Barnyard itself. You can find information about Snorby on Google.
Bill
-
Unfortunately Snorby is no longer being maintained.
PLEASE NOTE! This will most likely be our last Snorby package update. The creator and lead developer of Snorby has left the project and so Snorby is now considered unmaintained. Snorby will be removed from Security Onion in the future and so you should begin transitioning to Squert, Sguil, and/or ELSA.
http://blog.securityonion.net/2015/08/snorby-263-package-now-available-final.html
