I am working on adding some rules to SA so that SA adds more points when
detecting a signature. Here is a pastebin of the headers and the rules:
http://pastebin.com/qnwbSq5d
It should be adding 4 points as per my rule, but as it is it is only
adding 0.1 points.
--
Munroe Sollog
Digirati
I am trying to locate reason for performance spikes. I have read the various
wiki pages, and they suggest solutions but not a way to identify the
bottleneck. Is there way to increase logging so that I can begin to identify
or rule out the actual performance bottlenecks?
Munroe Sollog
ld be
helpful to include:
http://www.pastebin.ca/1089935
--
Munroe Sollog
Systems Engineer
Digirati Consulting, Inc
[EMAIL PROTECTED]
I'm not quite sure I understand what is happening here:
http://www.pastebin.ca/1184943
it looks like the message is triggering rules but in the end it is
getting '0' points
--
Munroe Sollog
Systems Engineer
Digirati Consulting, Inc
[EMAIL PROTECTED]
70_sare_spoof.cf.sare.sa-update.dostech.net
70_sare_oem.cf.sare.sa-update.dostech.net
70_sare_obfu0.cf.sare.sa-update.dostech.net
70_sare_obfu1.cf.sare.sa-update.dostech.net
70_sare_obfu2.cf.sare.sa-update.dostech.net
Karsten Bräckelmann wrote:
> > On Tue, 2008-08-26 at 00:34 -0400, Munroe Sollog
Here is the -t output
http://www.pastebin.ca/1185205
Munroe Sollog
Systems Engineer
Digirati Consulting, Inc
[EMAIL PROTECTED]
Bob Proulx wrote:
> Munroe Sollog wrote:
>
>> I'm not quite sure I understand what is happening here:
>>
>> http://www.pastebin.ca/11
I am sure this has been asked before, however, I cannot find any clear
documentation nor archives addressing this question. I would like to
store a per domain bayesdb, preferably in a database. Is there
documentation on doing this?
--
Munroe Sollog
Systems Engineer
Digirati Consulting, Inc
sol
