[Snort-users] read logs snort with snortsnarf
deny1 at ...953...
Wed Oct 13 01:02:06 EDT 2004
i use snort to put my logs in the file /var/log/snort
/usr/local/snort-2.1.3/src/snort -c /etc/snort/snort.conf
and i find a file alert in /var/log/snort
so i want to read it with snortsnarf (acid is not working with my php
i try ./snortsnarf.pl /var/log/snort
and i get in my root directory the rep : snfout.snort
question: am i sure to grab all the intrusions in this file alert ?
is it the good way to read and see the intrusions with snort ?
More information about the Snort-users