Hey! Again I've been redirected to a new sub. So I will try my luck here. OP: I have setup a system with snort, barnyard, mysql and snorby and I've gotten snort to log most of the stuff I want it to log. But the main problem is how to log SSH un-encrypted traffic. Someone mentioned I should setup a jumpbox but that will only log the commands. What I need is all the output. Is there a way to log SSH traffic using snort and read the un-encrypted output?
[link] [comments]