Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Disable logging of Priority 2 and 3 alerts and application data - Can this easily be done?

From: "Chris Hozian" <dsfr () linuxmail org>
Date: Sat, 08 Mar 2003 09:23:10 +0800
In the newest release version of Snort can you easily disable logging of Priority 2 and 3 alerts, including application 
data.  I only want Priority 1 alerts and application data to be logged.  Also, is the priority 2 stuff really anything 
to worry about?  I filter the messages with swatch, which emails me Priority 1 alerts to root.  Most of the Priority 2 
alerts don't seem like anything major.

,
Chris Hozian
Information Technologies
Book Systems, Inc.
dsfr () linuxmail org

-- 
______________________________________________
http://www.linuxmail.org/
Now with e-mail forwarding for only US$5.95/yr

Powered by Outblaze


-------------------------------------------------------
This SF.net email is sponsored by: Etnus, makers of TotalView, The debugger 
for complex code. Debugging C/C++ programs can leave you feeling lost and 
disoriented. TotalView can help you find your way. Available on major UNIX 
and Linux platforms. Try it free. www.etnus.com
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: