From owner-freebsd-security  Tue Jun  5  2:28:42 2001
Delivered-To: freebsd-security@freebsd.org
Received: from ringworld.nanolink.com (diskworld.nanolink.com [195.24.48.189])
	by hub.freebsd.org (Postfix) with SMTP id 35E2F37B405
	for <freebsd-security@freebsd.org>; Tue,  5 Jun 2001 02:28:37 -0700 (PDT)
	(envelope-from roam@orbitel.bg)
Received: (qmail 714 invoked by uid 1000); 5 Jun 2001 09:27:26 -0000
Date: Tue, 5 Jun 2001 12:27:26 +0300
From: Peter Pentchev <roam@orbitel.bg>
To: "Heimes, Rene" <rh@com-con.net>
Cc: freebsd-security@freebsd.org
Subject: Re: security log file parser / ids
Message-ID: <20010605122726.A665@ringworld.oblivion.bg>
Mail-Followup-To: "Heimes, Rene" <rh@com-con.net>,
	freebsd-security@freebsd.org
References: <F54B610C5BFDE546BBA2F6CC595ACC75084958@Exchange2000.com-con.ag>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <F54B610C5BFDE546BBA2F6CC595ACC75084958@Exchange2000.com-con.ag>; from rh@com-con.net on Tue, Jun 05, 2001 at 10:24:42AM +0100
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

On Tue, Jun 05, 2001 at 10:24:42AM +0100, Heimes, Rene wrote:
> hiho!
> 
> i am searching for a parser that parses security logs from ipfw-made up
> logs. anyone got a hint?
> (btw: what about ipfw firewalls - outdated? what would be better?
> ipchains? help!)

Is there any reason to consider ipfw outdated?
Or are you just asking if it is?  In that case, IMHO, no, it isn't.

G'luck,
Peter

-- 
This sentence every third, but it still comprehensible.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message