Snort mailing list archives

get rid of /var/log/snort/alert

From: aktivists () inbox lv
Date: Tue, 22 Nov 2005 15:39:11 +0200

I have configured two output plugins in snort.conf:
output database: log, postgresql [...]
output log_tcpdump: [...]

I am starting snort as follows:
snort -c /etc/snort/snort.conf -D -u _snort -g _snort -i bridge0

But after starting snort I get also /var/log/snort/alert
in ascii fast format (if I'm correct).

How to get rid of it?

I can get rid of it running snort as:
snort -c /etc/snort/snort.conf -A none -D -u _snort -g _snort -i bridge0
but then snort doesn't log to database.

Ideas?:)



Advertising:

Apnicis seedeet maajaas?
http://travel.inbox.lv

Current thread:

get rid of /var/log/snort/alert aktivists (Nov 22)
- Re: get rid of /var/log/snort/alert Dirk Geschke (Nov 22)