Snort mailing list archives
RE: syslog messages
From: "Nick Duda" <nduda () VistaPrint com>
Date: Thu, 5 Feb 2004 11:46:56 -0500
If I understand you correctly you want to log to syslog and then monitor it? In snort.conf add the following line: output alert_syslog: LOG_AUTH LOG_ALERT Then use a utility such as swatch to monitor and alert/echo/email ... whatever you want with the results. - Nick _____ From: Henri Chevallier [mailto:henri_chevallier () hotmail com] Sent: Wednesday, February 04, 2004 1:21 PM To: snort-users () lists sourceforge net Subject: [Snort-users] syslog messages Hello, I'd like to analyze my SNORT's logs and would like therefore to know ALL the messages that SNORT can send. Does someone know where I can find that ? Thanks Henri Chevallier
Current thread:
- syslog messages Henri Chevallier (Feb 05)
- RE: syslog messages Erik Mintz (Feb 05)
- snort-2.1.0 upgrade error Peggy Kam (Feb 05)
- Re: snort-2.1.0 upgrade error Jeremy Hewlett (Feb 05)
- Re: snort-2.1.0 upgrade error Peggy Kam (Feb 05)
- snort-2.1.0 upgrade error Peggy Kam (Feb 05)
- <Possible follow-ups>
- RE: syslog messages Nick Duda (Feb 05)
- RE: syslog messages Erik Mintz (Feb 05)