Snort mailing list archives
RE: Alert in syslog file
From: "Raffael Maio" <Vador () urbanet ch>
Date: Fri, 15 Oct 2004 17:37:07 +0200
Yes I comment this line too and the message was always send to the syslog. I probably had an another problem, because when I reboot, the problem solved by them self ?!? So, now it still wotking fine, Thx -----Message d'origine----- De : snort-users-admin () lists sourceforge net [mailto:snort-users-admin () lists sourceforge net] De la part de prabu Envoyé : vendredi, 15. octobre 2004 07:58 À : Raffael Maio; snort-users () lists sourceforge net Objet : Re: [Snort-users] Alert in syslog file
I see that all my alerts are sending to the syslog system. Is is obligatory??!? How can I remove that option ?! Because the syslog file becomes very bigger when there is lot of alert !!! How must I do to don't send alert to syslog? I have removed the line in the snort.conf that send to syslog, but it continue to send it in syslog
If U r using snort on Windows, then u must comment the following line in snort.conf. # output alert_syslog: LOG_AUTH LOG_ALERT If it is on Unix machines, then U must comment on the line, # output alert_syslog: LOG_AUTH LOG_ALERT Have u commented the right one? Cheers, Prabu.S --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.776 / Virus Database: 523 - Release Date: 10/12/2004 ------------------------------------------------------- This SF.net email is sponsored by: IT Product Guide on ITManagersJournal Use IT products in your business? Tell us what you think of them. Give us Your Opinions, Get Free ThinkGeek Gift Certificates! Click to find out more http://productguide.itmanagersjournal.com/guidepromo.tmpl _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users ------------------------------------------------------- This SF.net email is sponsored by: IT Product Guide on ITManagersJournal Use IT products in your business? Tell us what you think of them. Give us Your Opinions, Get Free ThinkGeek Gift Certificates! Click to find out more http://productguide.itmanagersjournal.com/guidepromo.tmpl _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Alert in syslog file Raffael Maio (Oct 14)
- Re: Alert in syslog file James Riden (Oct 14)
- Re: Alert in syslog file prabu (Oct 14)
- RE: Alert in syslog file Raffael Maio (Oct 15)
- Re: Alert in syslog file Jose Maria Lopez (Oct 16)