Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Alerts timestamp

From: Ramon Barquier <Ramon.Barquier () uab es>
Date: Wed, 22 Oct 2003 12:54:19 +0200
Hi,

Can anyone tell me how to configure snort sensor to register the correct alert time? I see the alerts with a difference 
of two hours (two hours less).

More info:

I have Red Had 9.0 

The /etc/localtime file is  /usr/share/zoneinfo/Europe/Madrid

The /etc/sysconfig/clock file:
ZONE="Europe/Madrid"
UTC=true
ARC=false

The output of the date command:
Wed Oct 22 12:47:42 CEST 2003

The hardware clock i set to the system clock. 

The snort_cmd_line is:
 -U -o -c /etc/snort/snort.eth0.conf

I'm using SnortCenter.

Thanks.



Ramón Barquier Montalbán           
Responsable de Projectes

Edifici D
Campus de la UAB
08193 Bellaterra. Barcelona
Tel. +34 935 811 488        Fax: +34 935 812 094
Ramon.Barquier () uab es
www.uab.es
Previous By Date Next
Previous By Thread Next

Current thread: