How about running two separate instances of SnortNotify so that for people in a large organisation, you can send different levels of alert to different groups of people? Eg, we operate 24/7 but the staff are less capable than the 9-5ers (such as me). I'd like them to receive only severity 1 alerts, but at the same time, I'd like to personally receive severity 1 and 2 alerts, so that I can see the information alerts that would precede an outright attack...
Also, I'd like to be able to send a more detailed email that contains things such as hyperlinks to documentation on our internal Wiki. I've tried embedding html within the message, but 1) it repeats on every line and 2) the html gets rendered in plain text. Unfortunately, this will probably require changes to Snort Notify to be possible
Regards,
Stuart
