[Snort-users] Can snort send alerts to the mysql database w/out ...output file?grep -i output /usr/local/etc/snort/snort.conf

Dirk Geschke dirk at ...10648...
Sat Mar 11 11:28:01 EST 2006


Hi Raymond,

> output database: log, mysql, user=yyyyy dbname=snort password=xxxxxx host=snorthost sensor_name=ids01
> output database: log, mysql, user=yyyyy dbname=snort_archive password=xxxxxx host=snorthost sensor_name=ids01

you have only output plugins for the "log" facility. Therefore snort
will use the default for the "alert" facility which is writing of files
to /var/log/snort....

Try the option "-A none" which will disable all alerts but still
allows the "log" output plugin to work...

Best regards

Dirk




More information about the Snort-users mailing list