Snort mailing list archives
Re: Newbie - log and alert - what is the difference?
From: Joerg Weber <j.weber () infos de>
Date: 13 May 2003 16:07:31 +0200
Amazing what one can find in archives[0] and FAQs[1]... [0] http://marc.theaimsgroup.com/?l=snort-users&m=104520114110282&w=2 [1] http://www.theadamsfamily.net/~erek/snort/logging_methods.txt Cheers!
Please excuse the daft question, but can anyone explain what the actual difference is? I have got snort, ACID, Barnyard and Mysql working fine, using the snort.log, but am not sure what the alert.log will give me. Since with Barnyard you can only select snort.log or alert.log as the input files, would one run 2 copies of barnyard? Thanks for any advice! Kind regards, Jon Paterson
-- Joerg Weber Network Security infoServe GmbH Nell-Breuning-Allee 6 D-66115 Saarbruecken T: (0681) 8 80 08 - 0 F: (0681) 8 80 08 - 59 www.infos.de E: j.weber () infos de
Attachment:
signature.asc
Description: This is a digitally signed message part
Current thread:
- Newbie - log and alert - what is the difference? Jon Paterson (May 13)
- Re: Newbie - log and alert - what is the difference? Joerg Weber (May 13)