Snort mailing list archives
Re: Alert in syslog file
From: "prabu" <prabu333 () hotpop com>
Date: Fri, 15 Oct 2004 11:27:53 +0530
I see that all my alerts are sending to the syslog system. Is is obligatory??!?How can I remove that option ?! Because the syslog file becomes very biggerwhen there is lot of alert !!! How must I do to don't send alert to syslog? I have removed the line in the snort.conf that send to syslog, but it continue to send it in syslog
If U r using snort on Windows, then u must comment the following line in snort.conf. # output alert_syslog: LOG_AUTH LOG_ALERT If it is on Unix machines, then U must comment on the line, # output alert_syslog: LOG_AUTH LOG_ALERT Have u commented the right one? Cheers, Prabu.S --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com).Version: 6.0.776 / Virus Database: 523 - Release Date: 10/12/2004
------------------------------------------------------- This SF.net email is sponsored by: IT Product Guide on ITManagersJournal Use IT products in your business? Tell us what you think of them. Give us Your Opinions, Get Free ThinkGeek Gift Certificates! Click to find out more http://productguide.itmanagersjournal.com/guidepromo.tmpl _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Alert in syslog file Raffael Maio (Oct 14)
- Re: Alert in syslog file James Riden (Oct 14)
- Re: Alert in syslog file prabu (Oct 14)
- RE: Alert in syslog file Raffael Maio (Oct 15)
- Re: Alert in syslog file Jose Maria Lopez (Oct 16)