diff options
author | Mika Havela <mika.havela@gmail.com> | 2007-12-31 16:45:10 +0000 |
---|---|---|
committer | Mika Havela <mika.havela@gmail.com> | 2007-12-31 16:45:10 +0000 |
commit | c9c5687ee9d596414a940e627cfbed3d98e960ca (patch) | |
tree | 9d8ca19fce01108591b49ab2985aa8390182e4f9 | |
parent | 14bea207755931df0155fa9a577782aa167695be (diff) | |
download | acf-snort-c9c5687ee9d596414a940e627cfbed3d98e960ca.tar.bz2 acf-snort-c9c5687ee9d596414a940e627cfbed3d98e960ca.tar.xz |
Sorting alert-output based on priority
git-svn-id: svn://svn.alpinelinux.org/acf/snort/trunk@479 ab2d0c66-481e-0410-8bed-d214d4d58bed
-rw-r--r-- | snort-model.lua | 9 | ||||
-rw-r--r-- | snort-read-html.lsp | 16 |
2 files changed, 16 insertions, 9 deletions
diff --git a/snort-model.lua b/snort-model.lua index da6d803..b4b3266 100644 --- a/snort-model.lua +++ b/snort-model.lua @@ -108,6 +108,13 @@ read_alert = function () end end end - return alertcount,alertpriority + --Start sorting priority-table + local sorted_table = {} + for n in pairs(alertpriority) do + table.insert(sorted_table, {name=n, value=alertpriority[n]}) + end + table.sort(sorted_table, function(a,b) return (a.name < b.name) end) + + return alertcount,sorted_table end diff --git a/snort-read-html.lsp b/snort-read-html.lsp index afda1fa..9bc3b14 100644 --- a/snort-read-html.lsp +++ b/snort-read-html.lsp @@ -19,16 +19,16 @@ <dt>Status</dt> <dd><?= view.alerts ?> alert(s)</dd> -<? for i in pairs(view.alertresult) do ?> - <h2><?= i ?></h2> - <? for j in pairs(view.alertresult[i]) do ?> +<? for i=1, table.maxn(view.alertresult) do ?> + <h2><?= view.alertresult[i]["name"] ?></h2> + <? for j in pairs(view.alertresult[i]["value"]) do ?> <h3><?= j ?></h3> - <? for k in pairs(view.alertresult[i][j]) do ?> - <p><B><?= view.alertresult[i][j][k]["value"][1] ?></B><BR> - <? for l=2, table.maxn(view.alertresult[i][j][k]["value"]) do ?> - <?= view.alertresult[i][j][k]["value"][l] ?><BR> + <? for k in pairs(view.alertresult[i]["value"][j]) do ?> + <p><B><?= view.alertresult[i]["value"][j][k]["value"][1] ?></B><BR> + <? for l=2, table.maxn(view.alertresult[i]["value"][j][k]["value"]) do ?> + <?= view.alertresult[i]["value"][j][k]["value"][l] ?><BR> <? end ?> - <I>(This alarm is repeated <B><?= view.alertresult[i][j][k]["count"] ?></B> times)</I></p> + <I>(This alarm is repeated <B><?= view.alertresult[i]["value"][j][k]["count"] ?></B> times)</I></p> <? end ?> <? end ?> |