Snort mailing list archives
Re: alert
From: Chris Green <cmg () uab edu>
Date: Tue, 16 Oct 2001 14:20:10 -0500
"snortlst snortlst" <snortlst () hotmail com> writes:
Snorts log everything in /var/log/snort I see there alert file and directopries with ip addresses naming convention. (NDIS mode) Is that correct to say that ALL alerts are put into alert file and I shouldn't browse all those directories? What those directories (ip addresses) are for?
Decoded packet dumps. Will add this to the documentation. -- Chris Green <cmg () uab edu> This is my signature. There are many like it but this one is mine. _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users