Snort mailing list archives

Re: syslog viewer

From: darek <darek () nyi net>
Date: Mon, 05 Aug 2002 16:27:40 -0400

The way I have it set up is that I start snort with the -s flag set.

In /etc/syslogd.conf you can specify:
!snort
*.*                                             @some.host.on.your.net

All alerts will be sent to that host. We use the Kiwi Syslog Daemon forWindows. It displays syslog messages from many different hosts; routermessages, root logins, ftp sessions, smtp monitors, and snort.



spyguy wrote:

Hello all,
I would like to have all of my snort sensors log to syslog and have syslogsent to a single server. Unfortunately, I don't feel like reading through aton of syslog via ssh. I would rather view it on some sort script-generatedhtml page.
Anyone have any recommendations? Is anyone doing any syslog output, and ifyes, how do you view the logs?
Thanks in advance.


-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=ort-users





-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Current thread:

syslog viewer spyguy (Aug 05)
- Re: syslog viewer darek (Aug 05)
  - RE: syslog viewer Bobby Brown (Aug 05)
- Re: syslog viewer twig les (Aug 05)