[Snort-users] Newbie - how to extract any info from snort -ved?

Galileo galileo at ...482...
Wed Sep 20 17:46:42 EDT 2000


> 5) ps aux | grep snort showed only
> 
> root       948  0.0  1.6  1240  500 pts/0    S    12:19   0:00 grep snort
> 
>     Snort is not running, is it?

The proper syntax would be ps -A (aux whatever you like) | grep "snort"

/usr/local/bin/snort -A FULL -c /temp/snortlog/08292k.rules -C -h
xxx.xxx.xxx.x/32 -a -N -l /temp/snortlog/ -D

 Works for me just fine 




More information about the Snort-users mailing list