[Snort-users] snort/mudpit - status

Steffen Maetzky (extern) estm at ...11508...
Mon Apr 5 06:51:19 EDT 2004


Because of my problem with duplicate entries I wanted to know which
processes are run.

I've started snort with: /usr/local/bin/snort -c /etc/snort/snort.conf
				-i eth1 -u snort -D

and mudpit with:	/usr/local/bin/mudpit -c /etc/snort/mudpit.conf
 				-D

Does anyone know if it is the normal behavior?

ps -ax |grep snort

 2276 ?        S      2:06 [snort]
 2512 ?        S      0:00 /usr/local/bin/mudpit -c
/etc/snort/mudpit.conf -D
 2513 ?        S      6:31 /usr/local/bin/mudpit -c
/etc/snort/mudpit.conf -D
 2694 pts/2    S      0:00 grep snort

ps -ax |grep mudpit

 2512 ?        S      0:00 /usr/local/bin/mudpit -c
/etc/snort/mudpit.conf -D
 2513 ?        S      6:36 /usr/local/bin/mudpit -c
/etc/snort/mudpit.conf -D
 2697 pts/2    S      0:00 grep mudpit






More information about the Snort-users mailing list