[Snort-users] How to stop snort to log startup messages into syslog?

Gerhard Mourani GMourani at ...16783...
Tue Apr 15 13:18:22 EDT 2014


Thanks Nick,

I think all of them are related to alerts. I’m looking for startup up messages generated by Snort at startup.

Gerhard,

On Apr 15, 2014, at 1:02 PM, Nicholas Mavis (nmavis) <nmavis at ...589...> wrote:

> You can turn off syslogging in your Snort.conf file. I would recommend
> reading through the following:
> 
> http://manual.snort.org/node21.html
> 
> -Nick
> 
> 
> On 4/15/14, 11:55 AM, "Gerhard Mourani" <GMourani at ...16783...> wrote:
> 
>> Hello list,
>> 
>> I don¹t know if there is a way to start the Snort process without having
>> its startup messages being logged into syslog -> /var/log/messages?
>> I¹ve tried to start it with the following parameters without success,
>> still log startup messages into the /var/log/messages file.
>> 
>> snort -c /etc/snort/snort.conf -D -g snort -q -N --daq afpacket --daq-var
>> buffer_size=512MB -i eth1
>> 
>> Regards,
>> --------------------------------------------------------------------------
>> ----
>> Learn Graph Databases - Download FREE O'Reilly Book
>> "Graph Databases" is the definitive new guide to graph databases and their
>> applications. Written by three acclaimed leaders in the field,
>> this first edition is now available. Download your free book today!
>> http://p.sf.net/sfu/NeoTech
>> _______________________________________________
>> Snort-users mailing list
>> Snort-users at lists.sourceforge.net
>> Go to this URL to change user options or unsubscribe:
>> https://lists.sourceforge.net/lists/listinfo/snort-users
>> Snort-users list archive:
>> http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users
>> 
>> Please visit http://blog.snort.org to stay current on all the latest
>> Snort news!
> 





More information about the Snort-users mailing list