[Snort-users] syslog

Saragoth nntk saragoth at ...131...
Thu May 10 08:56:35 EDT 2001


When I first started using snort I had no output
module defined in snort.conf, and used no switch at
startup, that gave me a few logfiles, one of thoose
was a file called log (contains portscan status)

Now I have defined this in snort.conf

output alert_full: filename
output alert_fast: filename
output log_tcpdump: filename

The file called log is now not used, but instead I get
what earlier was in the file called log into syslog
file. How do i stop it from sending to syslog file ?


regards Sg



__________________________________________________
Do You Yahoo!?
Yahoo! Auctions - buy the things you want at great prices
http://auctions.yahoo.com/




More information about the Snort-users mailing list