[Snort-users] read logs snort with snortsnarf

deny1 deny1 at ...953...
Wed Oct 13 01:02:06 EDT 2004


hello

i use snort to put my logs in the file /var/log/snort
/usr/local/snort-2.1.3/src/snort -c /etc/snort/snort.conf

and i find a file alert in /var/log/snort

so i want to read it with snortsnarf (acid is not working with my php 
version)

i try ./snortsnarf.pl  /var/log/snort
and i get in my root directory the rep : snfout.snort

fine

question: am i sure to grab all the intrusions in this file alert ?
is it the good way to read and see the intrusions with snort ?

thanks









More information about the Snort-users mailing list