[Snort-devel] [ snort-Bugs-480816 ] logto option not working?

noreply at ...12... noreply at ...12...
Mon Nov 12 10:04:01 EST 2001


Bugs item #480816, was opened at 2001-11-11 23:28
You can respond by visiting: 
http://sourceforge.net/tracker/?func=detail&atid=103357&aid=480816&group_id=3357

Category: None
Group: None
Status: Open
Resolution: None
Priority: 5
Submitted By: Nobody/Anonymous (nobody)
Assigned to: Nobody/Anonymous (nobody)
Summary: logto option not working?

Initial Comment:
Snort Version: 1.8.2 (Build 86)

O/S: FreeBSD 4.4

Snort Options:
snort -A fast -q -D -N -i [interface] -c snort.conf

Test rule:
alert tcp any any -> any any (msg:"Custom log!"; 
content:"custom log"; logto:"alert.custom";)

Problem: 
Log message is logged to /var/log/snort/alert. 
Expected "logto" option to cause logging 
to /var/log/snort/alert.custom. Also tried a fully-
qualified path name in the logto spec, and tried 
creating the file in advance. All with the same result.



----------------------------------------------------------------------

You can respond by visiting: 
http://sourceforge.net/tracker/?func=detail&atid=103357&aid=480816&group_id=3357




More information about the Snort-devel mailing list