Snort mailing list archives

Re: alert_unified only

From: Chris Green <cmg () sourcefire com>
Date: Wed, 01 Oct 2003 13:43:31 -0400

"John Byrnes" <JohnByrnes () alliantenergy com> writes:

In my log directory however, I still see what looks like the
alerrt_full module output, ie directories created with IP addr for the
name. I would like to turn that off so I dont have to do a lot of clean
up file maintainace on my sensors.


Add -N to your command line to turn of packet logging


Thanks,
John B


-- 
Chris Green <cmg () sourcefire com>
This is my signature. There are many like it but this one is mine.


-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Current thread:

alert_unified only John Byrnes (Oct 01)
- Re: alert_unified only Chris Green (Oct 01)
- Snort rules merging and duplicate entries (3D Linked List) Jukka Juslin (Oct 02)
- Re: alert_unified only Erek Adams (Oct 05)