Re: Xml output plugin for Win32

["jon baer" <security () jonbaer net>]

Xml output plugin for Win32i think your format is wrong:

output xml: log, url=tcp://127.0.0.1:1051 ...

however i dont think that the windows is built with xml by default, you would have to enable it, see:

http://www.cert.org/kb/snortxml/

im pretty sure this is the same plug-in.

- jon
  ----- Original Message ----- 
  From: Carpenter, Scott (OCTO) 
  To: 'snort-users () lists sourceforge net' 
  Sent: Thursday, November 13, 2003 1:01 PM
  Subject: [Snort-users] Xml output plugin for Win32


  Does anyone know how to get the xml output plugin for Snort win32 version working? 

  Error: 

  ERROR: unknown output plugin: 'xml'Fatal Error, Quitting.. 

  Snort.conf: 

  output xml: log, protocol=tcp host=127.0.0.1 port=1051 encoding=hex detail=full 

  Versions: 

  D:\snort\snort -V 

  -*> Snort! <*- 
  Version 2.0.4-ODBC-MySQL-FlexRESP-WIN32 (Build 97) 
  By Martin Roesch (roesch () sourcefire com, www.snort.org) 
  1.7-WIN32 Port By Michael Davis (mike () datanerds net, www.datanerds.net/~mike) 
  1.8 - 2.0 WIN32 Port By Chris Reid (chris.reid () codecraftconsultants com) 

  WinPcap version 3.0 

  Scott.carpenter () dc gov