Issues with snort 2.9.2.1 on FC13 x64

["Jahchan, George" <snort () compucenter org>]

I have compiled snort 2.9.2.1 from source on FC13 x86_64 with libpcap 1.1.1
and I am experiencing several issues the likes of which I have never seen
before, and I have been running earlier versions of snort for years.

1. High CPU utilization whenever snort generates alerts (between 80 and
100% of a CPU core).

2. The date/time in csv output file is random. All other logging is
disabled except for alerts in syslog which have the correct time stamp.

3. If I enable logging, snort logs to an endless number of 240 MB files
that quickly end up occupying all free space on disk. This is unsustainable
for any length of time, I had to disable all logging to run snort.

Are these particular to my setup? Anyone encountered such anomalous
behavior?

How do I diagnose and resolve these issues?

------------------------------------------------------------------------------
Virtualization & Cloud Management Using Capacity Planning
Cloud computing makes use of virtualization - but cloud computing 
also focuses on allowing computing to be delivered as a service.
http://www.accelacomm.com/jaw/sfnl/114/51521223/

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!