[Snort-users] How can i log detection time?

김무성 kimms at ...14610...
Thu Apr 8 04:28:04 EDT 2010


Hello.

I want to log detection time.
I saw some blog. and I could find information
look at this.

[Detect] Stime = 07/09-14:19:25.138247 ========
[DcodeContentMatch] Stime = 07/09-14:19:25.138259 ========
[DcodeContentMatch] Etime = 07/09-14:19:25.138269 ========
[nonContentOTNz] Stime = 07/09-14:19:25.138279 ========
[nonContentsOTNz] Etime = 07/09-14:19:25.138287 ========
[Detect] Etime = 07/09-14:19:25.138295 ========

how can i log above information?
are there any option for this in snort(snort.conf, /snort/log)?

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20100408/dec8e5af/attachment.html>


More information about the Snort-users mailing list