[Snort-users] Alert file

Mohammad MontazerI mohamad_montazery at ...131...
Wed Mar 20 04:13:15 EDT 2013


i dont know what is that!
i just downloaded roules from here: http://www.snort.org/snort-rules
and installed it on my opensuse.
is that enough?



________________________________
 From: Ricky Huang <rhuang.work at ...11827...>
To: "snort-users at lists.sourceforge.net" <snort-users at lists.sourceforge.net> 
Sent: Wednesday, March 20, 2013 12:19 PM
Subject: Re: [Snort-users] Alert file
 

Which rules manager do you use?  PulledPork, OinkMaster, or…?


On Mar 19, 2013, at 11:57 PM, Mohammad MontazerI <mohamad_montazery at ...8782.....> wrote:

Hello dear all.
>i enabled Network Intrusion Detection System (NIDS) mode and i recorded my network packets.
>this command: ./snort -d -l ./log -c snort.conf
>now in log directory there are two files:
>on of them log all packets and another one name is alert.
>i think this file should contain warning, attacks and ... against my network. but after about 7 hours the file still empty!!!
>this is good. but i want test snort. so how can write data in alert file?
>what i can do?
>------------------------------------------------------------------------------
>Everyone hates slow websites. So do we.
>Make your web apps faster with AppDynamics
>Download AppDynamics Lite for free today:
>http://p.sf.net/sfu/appdyn_d2d_mar_______________________________________________
>Snort-users mailing list
>Snort-users at lists.sourceforge.net
>Go to this URL to change user options or unsubscribe:
>https://lists.sourceforge.net/lists/listinfo/snort-users
>Snort-users list archive:
>http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users
>
>Please visit http://blog.snort.org to stay current on all the latest Snort news!

------------------------------------------------------------------------------
Everyone hates slow websites. So do we.
Make your web apps faster with AppDynamics
Download AppDynamics Lite for free today:
http://p.sf.net/sfu/appdyn_d2d_mar
_______________________________________________
Snort-users mailing list
Snort-users at lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20130320/77e75a8f/attachment.html>


More information about the Snort-users mailing list