Snort mailing list archives
Re: How to Get Snort 1.8.1b4 to write to /var/log/secure
From: Tony Lill <ajlill () ajlc waterloo on ca>
Date: Mon, 06 Aug 2001 18:01:48 EDT
Check in /etc/syslog.conf and see what facility is logging to /var/log/secure. On later RedHat's, it's authpriv (not auth). Then use: output alert_syslog: LOG_AUTHPRIV LOG_ALERT LOG_PID in your config file. (Use LOG_AUTH, of course, if auth.* is logging to the file) -- Tony Lill, Tony.Lill () AJLC Waterloo ON CA President, A. J. Lill Consultants fax/data (519) 650 3571 539 Grand Valley Dr., Cambridge, Ont. N3H 2S2 (519) 241 2461 --------------- http://www.ajlc.waterloo.on.ca/ ---------------- "Welcome to All Things UNIX, where if it's not UNIX, it's CRAP!" _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: http://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- How to Get Snort 1.8.1b4 to write to /var/log/secure Jon Naumann (Jul 26)
- RE: How to Get Snort 1.8.1b4 to write to /var/log/secure Erik Norman (Aug 02)
- RE: How to Get Snort 1.8.1b4 to write to /var/log/secure Erek Adams (Aug 02)
- Re: How to Get Snort 1.8.1b4 to write to /var/log/secure Tony Lill (Aug 06)
- RE: How to Get Snort 1.8.1b4 to write to /var/log/secure Erik Norman (Aug 02)