Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Logging problem

From: Joe McAlerney <joey () SiliconDefense com>
Date: Mon, 27 Aug 2001 14:31:32 -0700
Hi dushyanth,

You can specify full alerting in the configuration file.

output alert_full: alert
output database: <database options>

Remember to not use command line options that will override these
settings.

-Joe M.

-- 
|   Joe McAlerney     joey () silicondefense com   |
| Silicon Defense - Technical Support for Snort |
|       http://www.silicondefense.com/          |
+--                                           --+

Dushyanth Harinath wrote:


Hi guys,

How do i use -Afull option and database logging together.I have tried
tcpdump style and syslog with databse logging in rules.conf but iam not
satisfied with it cos they are not creating the sub directories with the
source ip's.Iam using log style while logging to mysql and also i want to
use the -Afull option.

Best Regards
TIA
dushyanth

--
My computer, my documents, my briefcase, my A??!

Dushyanth Harinath
Programmer/Sys Admin
Archean Infotech Limited
Ph No:091-040-3228666,6570704,3228674
http://www.archeanit.com

-----------------------------------------
This email was sent using SquirrelMail.
   "Webmail for nuts!"
http://squirrelmail.org/

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
http://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users


_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
http://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: