Polskie Forum Użytkowników Debiana

From root@debian.home.gateway Fri Jan 23 06:25:02 2009
Return-path: <root@debian.home.gateway>
Envelope-to: root@debian.home.gateway
Delivery-date: Fri, 23 Jan 2009 06:25:02 +0100
Received: from root by debian with local (Exim 4.69)
(envelope-from <root@debian.home.gateway>)
id 1LQEXN-0001Az-EI
for root@debian.home.gateway; Fri, 23 Jan 2009 06:25:02 +0100
To: root@debian.home.gateway
Subject: [SNORT] debian daily report
Message-Id: <E1LQEXN-0001Az-EI@debian>
From: root <root@debian.home.gateway>
Date: Fri, 23 Jan 2009 06:25:02 +0100
Status: RO

Events between 01 22 22:33:41 and 01 23 04:57:05
Total events: 4
Signatures recorded: 2
Source IP recorded: 2
Destination IP recorded: 1


Events from same host to same destination using same method
============================================
# of from to method
============================================
3 192.168.13.37 192.168.1.99 WEB-MISC /doc/ access


Percentage and number of events from a host to a destination
============================================
% # of from to
============================================
75.00 3 192.168.13.37 192.168.1.99


Percentage and number of events from one host to any with same method
============================================
% # of from method
============================================
75.00 3 192.168.13.37 WEB-MISC /doc/ access


Percentage and number of events to one certain host
============================================
% # of to method
============================================
75.00 3 192.168.1.99 WEB-MISC /doc/ access


The distribution of event methods
============================================
% # of method
============================================
75.00 3 WEB-MISC /doc/ access
3 192.168.13.37 -> 192.168.1.99

root@debian.home.gateway

root@debian