[Snort-users] Alert.ids log file not being created

Michael Steele mes at ...9057...
Tue Apr 29 09:14:15 EDT 2003


Yes, that did the trick. For some reason it got deleted from my config file.

Thank you all

- Michael

 -----Original Message-----
From: Snow Jacob C KPWA [mailto:JacobSC at ...160...] 
Sent: Tuesday, April 29, 2003 7:20 AM
To: 'Michael Steele'; snort-users at lists.sourceforge.net
Subject: RE: [Snort-users] Alert.ids log file not being created

Add this line to your snort.config file:

	output alert_fast: alert.ids

at least that worked for me.

Thank you,
Jacob Snow
jacobsc at ...160...

-----Original Message-----
From: Michael Steele [mailto:mes at ...9057...] 
Sent: Monday, April 28, 2003 6:28 PM
To: snort-users at lists.sourceforge.net
Subject: [Snort-users] Alert.ids log file not being created

Why is it that I have no alert.ids file being created?

output database: alert, mysql, user=user password=pass dbname=snort
host= port=3306 sensor_name=my_ids

snort -o -c c:\ids\snort\etc\snort.conf -l c:\IDS\snort\log

All I receive in my \log folder are folders with IP address and
individualized .ids files in each folder. I was sure Snort used to create a
\log\alert.ids file. I would Just as soon only have the alert.ids file only.

Running snort 2.01 b76

Thank you...


This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
Snort-users mailing list
Snort-users at lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
Snort-users list archive:

More information about the Snort-users mailing list