[Snort-users] Log output format

Chris Green cmg at ...671...
Thu Feb 7 06:41:14 EST 2002


Michael Wyraz <michael.wyraz at ...4903...> writes:

> Hi!
>
> I'm integrating Snort with an alerting/trouble ticket tool. To do this,
> I use the snort log output in the log dir - not the "alerts" file but the 
> many small files in the directory with the ip as name because that's much 
> more easy to use than a big logfile. Is there a way to let snort add the 
> aditional information (Xref-infos) to this logs to make the information more 
> complete?
>

Check out the -G option to snort

        -G <mode>  Add reference ids back into alert msgs (modes:
basic, url)

I assume when you say Xfef-infos, you mean the reference: tag stuff.


> Thank you. Michael.
>
> (Please send a copy of your reply to my address since i'm not in the mailing 
> list)
-- 
Chris Green <cmg at ...671...>
"I'm beginning to think that my router may be confused."




More information about the Snort-users mailing list