Snort mailing list archives

Re: alert

From: Chris Green <cmg () uab edu>
Date: Tue, 16 Oct 2001 14:20:10 -0500

"snortlst snortlst" <snortlst () hotmail com> writes:

Snorts log everything in /var/log/snort
I see there alert file and directopries with ip addresses naming convention.
(NDIS mode)
Is that correct to say that ALL alerts are put into alert file and I
shouldn't browse all those directories?
What those directories (ip addresses) are for?


Decoded packet dumps.  Will add this to the documentation.
-- 
Chris Green <cmg () uab edu>
This is my signature. There are many like it but this one is mine.

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Current thread:

alert snortlst snortlst (Oct 16)
- Re: alert Chris Green (Oct 16)
  - Re: alert snortlst snortlst (Oct 16)
    - Re: alert Chris Green (Oct 16)