ceb177290d
Portelli, with minor changes by me. The Analysis Console for Intrusion Databases (ACID) is a PHP-based analysis engine to search and process a database of security events generated by various IDSes, firewalls, and network monitoring tools. ACID has the ability to analyze a wide variety of events which are post-processed into its database. Tools exist for the following formats: - Snort - logsnorter
23 lines
760 B
Text
23 lines
760 B
Text
===========================================================================
|
|
$NetBSD: MESSAGE,v 1.1.1.1 2004/04/20 09:50:54 xtraeme Exp $
|
|
|
|
You will need to make ACID accessible through your HTTP server.
|
|
If you are running Apache and ap-php, then you may copy:
|
|
|
|
${EXDIR}/acid.conf
|
|
|
|
to ${PKG_SYSCONFDIR}/httpd and add the following line to httpd.conf:
|
|
|
|
Include ${PKG_SYSCONFDIR}/httpd/acid.conf
|
|
|
|
to make ACID accessible through:
|
|
|
|
http://www.domain.com/acid/
|
|
|
|
You will need to customise ${ACID_DIR}/acid_conf.php before
|
|
ACID will work. This includes setting up database access.
|
|
For detailed instructions see:
|
|
|
|
http://www.andrew.cmu.edu/~rdanyliw/snort/acid_config.html
|
|
|
|
===========================================================================
|