Snort mailing list archives
Re: How to stop snort to log startup messages into syslog?
From: Jeremy Hoel <jthoel () gmail com>
Date: Tue, 15 Apr 2014 17:22:59 +0000
But that option is just for it's alerting output right? Not the startup/shutdown messages (of which there are more then a few). I commented out the output line (output alert_syslog: LOG_LOCAL6 LOG_ALERT) in my snort.conf and I still see the startup/shutdown messages. For the OP - Security Onion does this (negates the messages in syslog) and it does it by starting snort differently. I'm trying to find the thread that talked about it. On Tue, Apr 15, 2014 at 5:02 PM, Nicholas Mavis (nmavis) <nmavis () cisco com>wrote:
You can turn off syslogging in your Snort.conf file. I would recommend reading through the following: http://manual.snort.org/node21.html -Nick On 4/15/14, 11:55 AM, "Gerhard Mourani" <GMourani () prival ca> wrote:Hello list, I don¹t know if there is a way to start the Snort process without having its startup messages being logged into syslog -> /var/log/messages? I¹ve tried to start it with the following parameters without success, still log startup messages into the /var/log/messages file. snort -c /etc/snort/snort.conf -D -g snort -q -N --daq afpacket --daq-var buffer_size=512MB -i eth1 Regards, -------------------------------------------------------------------------- ---- Learn Graph Databases - Download FREE O'Reilly Book "Graph Databases" is the definitive new guide to graph databases and their applications. Written by three acclaimed leaders in the field, this first edition is now available. Download your free book today! http://p.sf.net/sfu/NeoTech _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!------------------------------------------------------------------------------ Learn Graph Databases - Download FREE O'Reilly Book "Graph Databases" is the definitive new guide to graph databases and their applications. Written by three acclaimed leaders in the field, this first edition is now available. Download your free book today! http://p.sf.net/sfu/NeoTech _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
------------------------------------------------------------------------------ Learn Graph Databases - Download FREE O'Reilly Book "Graph Databases" is the definitive new guide to graph databases and their applications. Written by three acclaimed leaders in the field, this first edition is now available. Download your free book today! http://p.sf.net/sfu/NeoTech
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
Current thread:
- How to stop snort to log startup messages into syslog? Gerhard Mourani (Apr 15)
- <Possible follow-ups>
- Re: How to stop snort to log startup messages into syslog? Nicholas Mavis (nmavis) (Apr 15)
- Re: How to stop snort to log startup messages into syslog? Gerhard Mourani (Apr 15)
- Re: How to stop snort to log startup messages into syslog? Jeremy Hoel (Apr 15)
- Re: How to stop snort to log startup messages into syslog? Jeremy Hoel (Apr 15)
- Re: How to stop snort to log startup messages into syslog? Gerhard Mourani (Apr 15)
- Re: How to stop snort to log startup messages into syslog? Jeremy Hoel (Apr 15)
- Re: How to stop snort to log startup messages into syslog? Gerhard Mourani (Apr 15)
- Re: How to stop snort to log startup messages into syslog? Jeremy Hoel (Apr 15)
- Re: How to stop snort to log startup messages into syslog? Gerhard Mourani (Apr 15)