Snort mailing list archives
Re: logto keyword
From: Michael Lubinski <michael.lubinski () gmail com>
Date: Mon, 16 May 2011 07:51:55 -0500
I have had wierd issues in the past with files not being there and certain parts not creating them for me. If I create the file then I know for positive it is there and I can exclude that from the list of possible issues. Just my 2c. On Sun, May 15, 2011 at 9:41 PM, waldo kitty <wkitty42 () windstream net>wrote:
On 5/13/2011 08:50, Michael Lubinski wrote:Does the file exist? touch /var/log/snort/filename.log?really? the log file must be created before it can be used? snort should do this on it own, right? the only other thing i can thing of is a permissions problem... even if the file exists, snort may not be able to access it due to directory or file permissions...On Wed, May 11, 2011 at 2:57 PM, Don Florence <daflore () yahoo com <mailto:daflore () yahoo com>> wrote: Does the logto feature work? I'm running 2.9.0.4 on Kubuntu 10.10.I've tried...; logto:"filename.log"; ... ...; logto:filename.log; ... ...; logto:"/var/log/snort/filename.log"; ... It doesn't appear that filename.log ever gets created. Do I need to change something in my snort.conf file?------------------------------------------------------------------------------ Achieve unprecedented app performance and reliability What every C/C++ and Fortran developer should know. Learn how Intel has extended the reach of its next-generation tools to help boost performance applications - inlcuding clusters. http://p.sf.net/sfu/intel-dev2devmay _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
------------------------------------------------------------------------------ Achieve unprecedented app performance and reliability What every C/C++ and Fortran developer should know. Learn how Intel has extended the reach of its next-generation tools to help boost performance applications - inlcuding clusters. http://p.sf.net/sfu/intel-dev2devmay
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- logto keyword Don Florence (May 12)
- Re: logto keyword Michael Lubinski (May 13)
- Re: logto keyword waldo kitty (May 15)
- Re: logto keyword Michael Lubinski (May 16)
- Re: logto keyword waldo kitty (May 15)
- Re: logto keyword Michael Lubinski (May 13)