[Snort-devel] 2GB maximum binary log file size...

Abe L. Getchell abegetchell at ...243...
Mon Nov 19 12:44:03 EST 2001


Greetings!

You, Phil, are my new hero.  Works like a charm.  Thanks soooooo much
for this bit of code!

Thanks,
Abe

--
Abe L. Getchell
Security Engineer
abegetchell at ...243...


> -----Original Message-----
> From: cpw at ...86... [mailto:cpw at ...86...] 
> Sent: Monday, November 19, 2001 11:39 AM
> To: snort-devel at lists.sourceforge.net; abegetchell at ...243...
> Subject: RE: [Snort-devel] 2GB maximum binary log file size...
> 
> 
> Abe,
> 
> For what it's worth, on linux (2.4.3) I had to change 
> libpcap/savefile.c with the following at the beginning of the file:
> 
>   #ifdef linux
>   #define _FILE_OFFSET_BITS 64
>   #define _LARGEFILE64_SOURCE
>   #endif
> 
> Recompile libpcap, and reload libpcap related applications.
> 
> Voila, 70 Gibabyte tcpdump file with snaplen of 68 bytes in 24 hours.
> 
> Later,
> 
> Phil
> 





More information about the Snort-devel mailing list