Snort mailing list archives

Re: Using syslogd more efficiently

From: Erek Adams <erek () theadamsfamily net>
Date: Mon, 25 Nov 2002 08:02:14 -0800 (PST)

On Mon, 25 Nov 2002, Pauling wrote:

I've been trying to do this for a while, but to no success,
I like the output format that the syslogd output comes in, but I don't
want it to dump to /var/log/messages

Anybody here know how to configure this so that snort messages go to a
different log file?


Yep.

Change the log level and facility in snort.conf [0], then setup that level
and facility to go to a file, by editing /etc/syslog.conf [1].

Cheers!

-----
Erek Adams
Nifty-Type-Guy
TheAdamsFamily.Net


[0]     http://www.snort.org/docs/writing_rules/chap2.html#tth_sEc2.5.1
[1]     man syslog.conf



-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Current thread:

Using syslogd more efficiently Pauling (Nov 25)
- Re: Using syslogd more efficiently Erek Adams (Nov 25)
- Re: Using syslogd more efficiently Alberto Gonzalez (Nov 25)
- Re: Using syslogd more efficiently Demetri Mouratis (Nov 25)