RE: Snort IDS OUTPUT TO PRINTER

["Jerry Shenk" <jshenk () decommunications com>]

Paper...paper....I remember people talking about that.
 
I can't imagine why you'd want to do this but sure, that would work.
I'm not 100% sure how to make it work but here are two ideas.  You
definitely achieve both of these goals.
 
For the alert bell - I'd probably have swatch monitor the alert file and
"bell" whenever it saw the start of a new "alert paragraph".
 
For the printout - do something like "tail -f /var/log/snort/alert >
/dev/prn"  The tail program is designed to read the last few lines of a
file.  Using the -f parameter causes it to keep reading as the file is
appended to.  The ">" is to redirect the data to the printer device. 

-----Original Message-----
From: snort-users-admin () lists sourceforge net
[mailto:snort-users-admin () lists sourceforge net] On Behalf Of Aaron Russ
Sent: Friday, June 11, 2004 12:26 AM
To: snort-users () lists sourceforge net
Subject: [Snort-users] Snort IDS OUTPUT TO PRINTER


Is it possible to not only view the alerts from IDS mode on screen and
log to a file but also send it to a dot matrix printer as the alerts
come in?
 
this way you have a hard copy you can easily review or take with you.
 
Another question is can you make snort to beep when there is a IDS
alert?



  _____  

Do you Yahoo!?
Friends. Fun. Try the all-new Yahoo!  <http://messenger.yahoo.com/>
Messenger