[Snort-users] Output Plugins

Michael Davis mike at ...92...
Sat Mar 17 18:19:02 EST 2001


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> I can look into creating a syslog output plugin that send directly
> to an arbitrary host
> on the network.  This should solve your problem and may be useful
> for  

You can base the code off of the win32 port.  It should compile in
Unix perfectly fine (take out the winsock specific stuff though
init_winsock() and WSACleanup()).

Also, if you do not feel like writing this output plugin let me know
I could write it as well. Just never thoguht someone would want to
log to a file AND a remote host ;)

> > line argument -s. And that seems to be turning off the ability to
> > log into a file (in addition to syslog), since cmd line args
> > override the output options.

Correct. You, currently, cannot log to a file AND log to a remote
syslog server.
 
Thanks,
Michael Davis
Chief Technical Officer
Data Nerds, LLC.
http://www.datanerds.net

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>

iQA/AwUBOrPw5fiUqZ9dnoKsEQJpjgCg08ue/JNB6kOylRlmpIct8qbYDSUAnRlX
Ax0SZ4qAY4O0CF7kwv59dhxR
=Db5q
-----END PGP SIGNATURE-----






More information about the Snort-users mailing list