Snort mailing list archives

Previous By Date Next
Previous By Thread Next

logging appears to have slowed down dramitically

From: "Andrew P. Kaplan" <noc () cshore com>
Date: Sun, 8 Sep 2002 14:39:18 -0400
I just setup snort using "twigles" excellent how-to. I'm not logging to
mysql yet. Just want to get a feel for snort first.
Using snort -c /usr/snort/snort.conf -l /var/log/snort -s

I noticed a hundreds of directories created under /var/log/snort for the
first 24 hours. However in day 2,3,4,and 5 only one or two directories are
being created per day. Plus when I view the older directories they don't
show any new activity, as they should since some of the boxes are MY boxes
creating FP's.

[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-]
  Andrew P. Kaplan                   Network Administrator
  WEB   www.cshore.com                 168 Boston Post Road
  EMAIL: noc () cshore com              Madison, CT 06443
[=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-]



Obstacles are those things that appear when you lose sight of your
goal.
                     -  Henry Ford








---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.385 / Virus Database: 217 - Release Date: 9/4/02



-------------------------------------------------------
This sf.net email is sponsored by: OSDN - Tired of that same old
cell phone?  Get a new here for FREE!
https://www.inphonic.com/r.asp?r=sourceforge1&refcode1=vs3390
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: