Snort mailing list archives

Re: Alert OR syslog?

From: Alberto Gonzalez <albertg () cerebro violating us>
Date: Thu, 05 Dec 2002 14:02:47 -0800

Thats because 1.8.7 doesnt have that bug..... you can just use outputalert_syslog in your snort.conf.


Cheers!

   - Alberto

Weiss, Jeffrey H. wrote:

Well, actually syslogging it DOES work with no flag to "-s" in1.8.7beta5.

Blows up if I include a flag....

-----Original Message-----
From: Steve Halligan [mailto:giermo () geeksquad com]
Sent: Thursday, December 05, 2002 12:29 PM
To: 'Weiss, Jeffrey H.'; 'Alberto Gonzalez'
Cc: snort-users () lists sourceforge net
Subject: RE: [Snort-users] Alert OR syslog?


The -s switch is set to require a flag, but it doesn't use it.  You could
put -s anythingatall.  But it doesn't work with no flag.
>Not sure I understand your blame_cmg...new flag?
>Thanks,
>Jeffrey


--
The secret to success is to start from scratch and keep on scratching.




-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Current thread:

Alert OR syslog? Weiss, Jeffrey H. (Dec 05)
- Re: Alert OR syslog? Alberto Gonzalez (Dec 05)
- <Possible follow-ups>
- RE: Alert OR syslog? Weiss, Jeffrey H. (Dec 05)
  - RE: Alert OR syslog? Don (Dec 05)
    - RE: Alert OR syslog? Don (Dec 05)
- RE: Alert OR syslog? Steve Halligan (Dec 05)
- RE: Alert OR syslog? Weiss, Jeffrey H. (Dec 05)
  - Re: Alert OR syslog? Alberto Gonzalez (Dec 05)
- RE: Alert OR syslog? Weiss, Jeffrey H. (Dec 05)
- RE: Alert OR syslog? L. Christopher Luther (Dec 06)
  - Re: RE: Alert OR syslog? Erek Adams (Dec 06)