Re: format change in log names

[Phil Wood <cpw () lanl gov>]

I've attached an unauthorized patch to spo_log_tcpdump.c which lets YOU
set the file name.

  I call snort with ... -S INSTANCE=$INSTANCE ...

  The conf file entry is set like so:

    output log_tcpdump: !$INSTANCE

and finally, I patch the snort source to honor the "bang" syntax.

On Tue, Aug 20, 2002 at 09:08:16AM -0400, JB wrote:
> I have recently update to Snort Version 1.9.0beta4 (Build 195) and have
> noticed that logging to a file now creates different file names than
> before.  My logs now look something like this:
>
> snort.log.1029514206
>
> as opposed to how they used to look:
>
> snort-0815 () 0953 log
>
> Is there a way to change this in the configuartion file.  Although I can
> just open the log to see its date, the previous naming scheme helps me
> more.
>
> Thanks,
>
> Josh Bauman
>
>
>
> -_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
>      Joshua Bauman   -  GNU Crusader
> baumanj () union edu      darwin () darw1n net
>       baumanj () vuser vu union edu
>              www.darw1n.net
>   ,           ,
>  /             \
> ((__-^^-,-^^-__))   _____
>  `-_---' `---_-'  /      \
>   `--|o` 'o|--'  |  w3rd! |
>      \  `  /      \___  _/
>       ): :(           )/
>       :o_o:
>        "-"
>
>
>
>
>
> -------------------------------------------------------
> This sf.net email is sponsored by: OSDN - Tired of that same old
> cell phone?  Get a new here for FREE!
> https://www.inphonic.com/r.asp?r=sourceforge1&refcode1=vs3390
> _______________________________________________
> Snort-users mailing list
> Snort-users () lists sourceforge net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users

-- 
Phil Wood, cpw () lanl gov

Attachment: log_tcpdump_bang-patch
Description: