Snort mailing list archives
RE: Log to remote syslog server and MySql Database
From: "Uhte, Russ" <RussU () RP-L com>
Date: Wed, 11 Sep 2002 12:28:05 -0500
Twig, Thanks for your reply... But I've tried that with no success. I researched a bit in the archives and it seems the only way to accomplish this is by changing source code and recompiling... For me, that's a very difficult task!! Anybody know anything about doing that?? Thanks, Russ -----Original Message----- From: twig les [mailto:twigles () yahoo com] Sent: Wednesday, September 11, 2002 12:03 PM To: Michael Boman; Uhte, Russ; 'snort-users () lists sourceforge net' Subject: Re: [Snort-users] Log to remote syslog server and MySql Database I did both for about 6 months and it worked fine. Just don't use the -s option. Instead uncomment the syslog options in snort.conf while leaving the mysql ones too. --- Michael Boman <michael () ayeka dyndns org> wrote:
At 10:59 AM 9/11/2002 -0500, Uhte, Russ wrote:Hello all!! I'm running Snort V1.87 on Windows 2000 and loggingto MySQL. I'd like tobe able to log to a remote syslog server as well asmy database. Every timeI start Snort with the -s option, it starts loggingto the syslog server,but quits logging to the MySQL server. Is anyoneaware of a way to makethese to options work together?? Thanks in Advance!! -Russ"Command options has precedence over configuration file". Configure syslog() logging in the configuration file instead of using the command option (IIRC there was some issues with syslog and win32.. search the archives). Best regards Michael Boman -- Michael Boman Student, Husband, Geek. Not necessary in that order thought.
-------------------------------------------------------
In remembrance www.osdn.com/911/ _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users ===== ----------------------------------------------------------- Heavy metal made me do it. ----------------------------------------------------------- __________________________________________________ Yahoo! - We Remember 9-11: A tribute to the more than 3,000 lives lost http://dir.remember.yahoo.com/tribute --- [This E-mail scanned for viruses by Declude Virus] --- CONFIDENTIALITY NOTICE: This email and any attachments are for the exclusive and confidential use of the intended recipient. If you are not the intended recipient, please do not read, distribute or take action in reliance upon this message. If you have received this in error, please notify us immediately by return email and promptly delete this message and its attachments from your computer system. --- ------------------------------------------------------- In remembrance www.osdn.com/911/ _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- RE: Log to remote syslog server and MySql Database Uhte, Russ (Sep 11)
- RE: Log to remote syslog server and MySql Database Frank Knobbe (Sep 12)
- <Possible follow-ups>
- RE: Log to remote syslog server and MySql Database Uhte, Russ (Sep 13)
- RE: Log to remote syslog server and MySql Database Michael Steele (Sep 15)
- RE: Log to remote syslog server and MySql Database Frank Knobbe (Sep 19)
- RE: Log to remote syslog server and MySql Database Michael Steele (Sep 15)
- RE: Log to remote syslog server and MySql Database LaRose, Dallas (Sep 15)