[Snort-users] ACID and portscan reporting
kmarino at ...3598...
Tue Oct 16 06:38:31 EDT 2001
The FAQ says to change the output line in your snort.conf to:
output database: alert, mysql, user=user dbname=snort host=localhost
My question is, does this stop snort from logging to the log file and
the database? I like that I have it logging to both. Sorry, I'm new to
From: roman at ...438... [mailto:roman at ...438...]
Sent: Monday, October 15, 2001 8:05 PM
Cc: snort-users at lists.sourceforge.net
Subject: Re: [Snort-users] ACID and portscan reporting
The database plugin probably has not been configured correctly to
See Question #B-7 of the ACID FAQ:
> On Wed, 19 Sep 2001, Lists wrote:
> > I see that port scans are being logged to alert.ids, yet nothing
> > up in ACID under portscans.
> > All of the rules seem to be working fine. I am sure this is
> > something simple that I am overlooking.
> > Anybody?
> > Ben
This message was sent using Voicenet WebMail.
Snort-users mailing list
Snort-users at lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
Snort-users list archive:
More information about the Snort-users