[Snort-users] snort syslog output support

James Lay digitalx00 at ...11827...
Wed May 30 08:33:44 EDT 2012


On May 30, 2012, at 5:51 AM, Kungu Panda wrote:
> I need to send snort syslog alerts to out central syslog system.  I thought I read in a previous posting that snort syslog output was going away.  Is this still true, has it happened?
> 
> What would be the best way to perform this?  
> Any recommendations/ideas would be helpful.
> 
> Thanks!
> KPanda


I certainly hope not….having IDS go to syslog is a PCI requirement (Section 10 of PCI DSS 2.0).  Not having this would be bad.

James



More information about the Snort-users mailing list