Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: -l parameter

From: twig les <twigles () yahoo com>
Date: Tue, 9 Dec 2003 16:43:26 -0800 (PST)
I'm executing these commands in

crontab:

3 16 * * * find /var/log/snort -atime +7 -exec rm -rf {} \;
4 16 * * * mkdir /var/log/snort

The mkdir was necessary because "rm -rf" removes the snort
directory.  Is 
it possible to avoid this?  Thanks again for the advice from
both of you.



Well you could erase things *inside* the directory, which it
looks like that command does.  I'd have to tinker with it, no
time.  But as an alternative have you tried newsyslog (man 8
newsyslog)?  If you don't get into the ISO 8601 time formatting
garbage it should take you about 5 minutes to set up log
rotation.  If you get into the ISO 8601 hooha it should take 10.

__________________________________
Do you Yahoo!?
Protect your identity with Yahoo! Mail AddressGuard
http://antispam.yahoo.com/whatsnewfree


-------------------------------------------------------
This SF.net email is sponsored by: IBM Linux Tutorials.
Become an expert in LINUX or just sharpen your skills.  Sign up for IBM's
Free Linux Tutorials.  Learn everything from the bash shell to sys admin.
Click now! http://ads.osdn.com/?ad_id=1278&alloc_id=3371&op=click
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: