Snort mailing list archives
Re: Snort App Logs (not alerts)
From: "Kurzawa, Kevin" <kkurzawa () co pinellas fl us>
Date: Thu, 16 Oct 2014 11:11:18 -0400
That switch seems to be for when /not/ running daemon mode. But I am. Although this implies that console messages are already sent to syslog when running in daemon mode. But I'm not seeing this. Using RHEL 6.6. -M Log console messages to syslog when not running daemon mode. This switch has no impact on logging of alerts. I suppose I'd also like to know if I can specify a file for the console messages to go to, like /var/log/snort/console. -----Original Message----- From: James Lay [mailto:jlay () slave-tothe-box net] Sent: Thursday, October 16, 2014 10:27 AM To: snort-users () lists sourceforge net Subject: Re: [Snort-users] Snort App Logs (not alerts) On 2014-10-16 08:10, Kurzawa, Kevin wrote:
Where can I view the snort application startup logs? I've been searching all over the snort manual and mailing list, but the only logging I can find references to is about alerts. The logging I want to see is in regards to the application startup and application errors itself (I have my alert logging working just fine). Snort is starting as a daemon and I don't want to have to manually start it to view all the juicy startup messages. But /var/log/messages does not contain anything about snort.
Start it with -M:
-M Log messages to syslog (not alerts)
James
------------------------------------------------------------------------------
Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
http://p.sf.net/sfu/Zoho
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users
Please visit http://blog.snort.org to stay current on all the latest Snort news!
------------------------------------------------------------------------------
Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
http://p.sf.net/sfu/Zoho
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users
Please visit http://blog.snort.org to stay current on all the latest Snort news!
Current thread:
- Snort App Logs (not alerts) Kurzawa, Kevin (Oct 16)
- Re: Snort App Logs (not alerts) James Lay (Oct 16)
- Re: Snort App Logs (not alerts) Kurzawa, Kevin (Oct 16)
- Re: Snort App Logs (not alerts) waldo kitty (Oct 16)
- Re: Snort App Logs (not alerts) Kurzawa, Kevin (Oct 16)
- Re: Snort App Logs (not alerts) Kurzawa, Kevin (Oct 16)
- Re: Snort App Logs (not alerts) James Lay (Oct 16)
- <Possible follow-ups>
- Re: Snort App Logs (not alerts) Y M (Oct 16)