Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: no IDS logs from snort

From: James Lay <jlay () slave-tothe-box net>
Date: Thu, 7 Mar 2013 08:12:28 -0700

On Mar 6, 2013, at 10:21 PM, Kevin Thomas <axel2078 () gmail com> wrote:


Snort is buggy.
Why do you want to use it?
You don't have enough RAM. (since when is 2GB not enough to run 
snort....it ran fine on Smoothwall!)
You don't have enough rules selected.
You have too many rules selected.
You have the wrong rules selected.
Snort only logs the big stuff.


Kevin,

What are your logging/output settings in your snort configuration file?

James
------------------------------------------------------------------------------
Symantec Endpoint Protection 12 positioned as A LEADER in The Forrester  
Wave(TM): Endpoint Security, Q1 2013 and "remains a good choice" in the  
endpoint security space. For insight on selecting the right partner to 
tackle endpoint security challenges, access the full report. 
http://p.sf.net/sfu/symantec-dev2dev
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!
Previous By Date Next
Previous By Thread Next

Current thread: