Unixsock plugin?

[Honia A <honia2002 () hotmail com>]

Hi all,
 
I have a question on how to use Snort unixsock plugin.
 
1) I followed the direction in the manual and added the line output alert_unixsock to snort.conf file. 
 
2) Then I run the snort command like this:  snort  -A unsock -c snort.conf and will start to get some output inside the 
terminal.
 
I was wondering if you could please let me know if I am doing this the right way or I am missing some steps? 
 
If I am doing this the correct way, what is it supposed to happen ultimately?  
 
(I made sure the /var/log/snort directory does contain the snort_alert file if it matters)
 
 
Thanks in advance,
h
 



 

                                          
_________________________________________________________________
Windows 7: I wanted simpler, now it's simpler. I'm a rock star.
http://www.microsoft.com/Windows/windows-7/default.aspx?h=myidea?ocid=PID24727::T:WLMTAGL:ON:WL:en-US:WWL_WIN_myidea:112009

------------------------------------------------------------------------------
Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day 
trial. Simplify your report design, integration and deployment - and focus on 
what you do best, core application coding. Discover what's new with
Crystal Reports now.  http://p.sf.net/sfu/bobj-july

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users