[Snort-users] logging to syslog

Chris Arnold chris.arnold at ...3942...
Wed Feb 20 07:25:10 EST 2002


man syslog.conf

Chris

-----Original Message-----
From: Madhav Diwan [mailto:mdiwan at ...200...]
Sent: Wednesday, February 20, 2002 9:56 AM
To: snort-users at lists.sourceforge.net
Subject: [Snort-users] logging to syslog


Is there a way to log alerts to the /var/log/secure file instead of the
/var/log/messages file? 

 I am using redhat 7.2  snort 1.8.3-5 
and the following commandline in /etc/init.d/snortd:

	daemon /usr/sbin/snort -l /var/log/snort -d -D \
		 -i $INTERFACE -c /etc/snort/snort.conf

 /etc/snort/snort.conf is configured to log to syslog 

 output alert_syslog: LOG_AUTH LOG_ALERT

but the messages end up in the messages file
and i want them to go to the secure file as they did in snort 1.7.


Thank you

Sincerely 

Madhav

_______________________________________________
Snort-users mailing list
Snort-users at lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users




More information about the Snort-users mailing list