[Snort-users] log behavior on WIN2K

Dr. Richard W. Tibbs ccamp at ...4532...
Wed Mar 20 08:55:21 EST 2002

I notice that the default log mechanism on *nix is /dev/null.
On WIN2K, it appears to be to create a log file like ./log/<ipaddrress>
where ipaddress is the destination address of whatever packet triggers a 
rule.  Is there a way to turn logging to a file completely off in WIN2K?
On *nix it was just leaving off the -l parm, I thought.

Thanks in advance

More information about the Snort-users mailing list