[Snort-users] RE: Alert notification - HELP!! -URGENT!!

If you mean e-mail alerts use swatch, download the following packages and install something like this.

tar -xzvf Bit-Vector*.tar.gz
cd Bit-Vector*
perl Makefile.PL
make && make install
cd..

tar -xzvf Date-Calc*.tar.gz
cd Date-Calc*
perl Makefile.PL
make && make install
cd..

tar -xzvf TimeDate*.tar.gz
cd TimDate*
perl Makefile.PL
make && make install
cd..

tar -xzvf File-Tail*.tar.gz
cd File-Tail*
perl Makefile.PL
make && make install
cd..

tar -xzvf Time-HiRes*.tar.gz
cd Time-HiRes*
perl Makefile.PL
make && make install
cd..

tar -xzvf swatch*.tar.gz
cd swatch*
perl Makefile.PL
make && make install
cd..

vi /etc/swatchrc
i (to insert new text)

Do you need help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related snort.org Links snort-announce snort-cvsinfo snort-devel snort-sigs snort-users Request more information about Pantek

watchfor /.*/
echo bold
mail addresses=joeuser123\@hotmail.com,subject=---Snort IDS Alert---

ESC (to exit insert mode)
:w (to write file)
:q (to quit vi)

swatch --deamon -c /etc/swatchrc -t /var/log/snort/alert