saragoth at ...131...
Thu May 10 08:56:35 EDT 2001
When I first started using snort I had no output
module defined in snort.conf, and used no switch at
startup, that gave me a few logfiles, one of thoose
was a file called log (contains portscan status)
Now I have defined this in snort.conf
output alert_full: filename
output alert_fast: filename
output log_tcpdump: filename
The file called log is now not used, but instead I get
what earlier was in the file called log into syslog
file. How do i stop it from sending to syslog file ?
Do You Yahoo!?
Yahoo! Auctions - buy the things you want at great prices
More information about the Snort-users