[Snort-users] syslog messages
nduda at ...10466...
Thu Feb 5 08:48:05 EST 2004
If I understand you correctly you want to log to syslog and then monitor
In snort.conf add the following line:
output alert_syslog: LOG_AUTH LOG_ALERT
Then use a utility such as swatch to monitor and alert/echo/email ...
whatever you want with the results.
From: Henri Chevallier [mailto:henri_chevallier at ...125...]
Sent: Wednesday, February 04, 2004 1:21 PM
To: snort-users at lists.sourceforge.net
Subject: [Snort-users] syslog messages
I'd like to analyze my SNORT's logs and would like therefore to know ALL
the messages that SNORT can send. Does someone know where I can find
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Snort-users