[Snort-users] Tcpdump logging

Gregor Binder gbinder at ...462...
Thu Nov 23 15:52:31 EST 2000

Martin Roesch on Thu, Nov 23, 2000 at 01:32:10AM -0500:


> You can do this precisely with Snort by just starting it in logging mode.  For
> example:
> snort -b -l <logdir>
> This lets Snort know you just want to log every packet it sees (in binary mode
> in this case).

is there any way I can make the binary data go to stdout (as
unmodified SHADOW would require it to)?

Thank you,

Gregor Binder  <gbinder at ...462...>  http://www.sysfive.com/~gbinder/
sysfive.com GmbH             UNIX. Networking. Security. Applications.
Gaertnerstrasse 125b, 20253 Hamburg, Germany       TEL +49-40-63647482

More information about the Snort-users mailing list