sensor representation in database

[Martina Podesser <Martina.Podesser () at flextronics com>]

hello everybody,

Now I'm using snort for quite a while on a linux red hat 7.3 machine. But I
couldn't solve the following problem, might you can help me.

the linux machine is running and the sniffing interface is set to
promiscuous mode, then I start snort. snort logs its hostname to the
database and also logs alerts under its hostname -- like it should be 

but

if I boot the linux machine and snort starts at booting, the snort sensor is
presented as unknown host in the database. the alerts are also logged to the
unknown sensor. 
this is a great problem because one sensor is known under two different
names in the database !!!

so, what can I do ??? (at the boot sequence the hostname is set before snort
is started)

thanks for your help and best regards,

martina


FLEXTRONICS 
World Trade Center
A-1300 Vienna 
Austria
Martina.Podesser () at flextronics com 
www.flextronics.com 


FLEXTRONICS 
World Trade Center
A-1300 Vienna 
Austria
Martina.Podesser () at flextronics com 
www.flextronics.com 




-------------------------------------------------------
This SF.net email is sponsored by: Get the new Palm Tungsten T 
handheld. Power & Color in a compact size! 
http://ads.sourceforge.net/cgi-bin/redirect.pl?palm0002en
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users