An output system for Snort (patched for sguil6) Was Maintained by:firstname.lastname@example.org Port Added: 26 Jan 2006 10:59:50 License: not specified in port
Barnyard is output spool reader for Snort! It decouples output overhead
from the Snort network intrusion detection system and allows Snort to
run at full speed. It accepts binary inputs from snort and outputs
human readable files to disc or to a database. At present, barnyard
is designed to accept binary inputs from snort and produce either human
readable files for parsing by log parsers or feed data directly to a
database (either mysql or postgresql at present.).
Barnyard has 3 modes of operation:
One-shot, continual, continual w/ checkpoint. In one-shot mode,
barnyard will process the specified file and exit. In continual mode,
barnyard will start with the specified file and continue to process
new data (and new spool files) as it appears. Continual mode w/
checkpointing will also use a checkpoint file (or waldo file in the
snort world) to track where it is. In the event the barnyard process
ends while a waldo file is in use, barnyard will resume processing at
the last entry as listed in the waldo file.
No installation instructions: this port has been deleted.
The package name of this deleted port was: barnyard-sguil6
===> The following configuration options are available for barnyard-sguil6-0.2.0_2:
MYSQL=on (default) "Enable MySQL support"
POSTGRESQL=off (default) "Enable PostgreSQL support"
===> Use 'make config' to modify these settings