Snort mailing list archives

Re: Alert file

From: waldo kitty <wkitty42 () windstream net>
Date: Wed, 20 Mar 2013 12:39:29 -0500

On 3/20/2013 03:13, Mohammad MontazerI wrote:

i dont know what is that!
i just downloaded roules from here: http://www.snort.org/snort-rules
and installed it on my opensuse.
is that enough?
http://www.snort.org/snort-rules


so then you currently do not use a rules manager... it isn't needed at this 
point anyway... all you want to do it cause an alert, right?


--------------------------------------------------------------------------------
*From:* Ricky Huang <rhuang.work () gmail com>
*To:* "snort-users () lists sourceforge net" <snort-users () lists sourceforge net>
*Sent:* Wednesday, March 20, 2013 12:19 PM
*Subject:* Re: [Snort-users] Alert file

Which rules manager do you use? PulledPork, OinkMaster, or…?

On Mar 19, 2013, at 11:57 PM, Mohammad MontazerI <mohamad_montazery () yahoo com
<mailto:mohamad_montazery () yahoo com>> wrote:

Hello dear all.
i enabled Network Intrusion Detection System (NIDS) mode and i recorded my
network packets.
this command: ./snort -d -l ./log -c snort.conf
now in log directory there are two files:
on of them log all packets and another one name is alert.
i think this file should contain warning, attacks and ... against my network.
but after about 7 hours the file still empty!!!
this is good. but i want test snort. so how can write data in alert file?
what i can do?




------------------------------------------------------------------------------
Everyone hates slow websites. So do we.
Make your web apps faster with AppDynamics
Download AppDynamics Lite for free today:
http://p.sf.net/sfu/appdyn_d2d_mar
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!

Current thread:

Alert file Mohammad MontazerI (Mar 19)
- Re: Alert file Ricky Huang (Mar 20)
  - Re: Alert file Mohammad MontazerI (Mar 20)
    - Re: Alert file waldo kitty (Mar 20)
    - Re: Alert file Mohammad MontazerI (Mar 20)
    - Re: Alert file waldo kitty (Mar 21)
- Re: Alert file salawank (Mar 20)
  - Message not available
    - Re: Alert file Mohammad MontazerI (Mar 20)
- Re: Alert file waldo kitty (Mar 20)