Snort mailing list archives
RE: Alert OR syslog?
From: "Weiss, Jeffrey H." <Jeffrey.Weiss () Pleasantco com>
Date: Thu, 5 Dec 2002 12:08:01 -0700
Thank you, Alberto. -----Original Message----- From: Alberto Gonzalez [mailto:albertg () cerebro violating us] Sent: Thursday, December 05, 2002 4:03 PM To: Weiss, Jeffrey H. Cc: 'Steve Halligan'; snort-users () lists sourceforge net Subject: Re: [Snort-users] Alert OR syslog? Thats because 1.8.7 doesnt have that bug..... you can just use output alert_syslog in your snort.conf. Cheers! - Alberto Weiss, Jeffrey H. wrote:
Well, actually syslogging it DOES work with no flag to "-s" in 1.8.7beta5. Blows up if I include a flag.... -----Original Message----- From: Steve Halligan [mailto:giermo () geeksquad com] Sent: Thursday, December 05, 2002 12:29 PM To: 'Weiss, Jeffrey H.'; 'Alberto Gonzalez' Cc: snort-users () lists sourceforge net Subject: RE: [Snort-users] Alert OR syslog? The -s switch is set to require a flag, but it doesn't use it. You could put -s anythingatall. But it doesn't work with no flag.Not sure I understand your blame_cmg...new flag? Thanks, Jeffrey
-- The secret to success is to start from scratch and keep on scratching.
Current thread:
- Alert OR syslog? Weiss, Jeffrey H. (Dec 05)
- Re: Alert OR syslog? Alberto Gonzalez (Dec 05)
- <Possible follow-ups>
- RE: Alert OR syslog? Weiss, Jeffrey H. (Dec 05)
- RE: Alert OR syslog? Don (Dec 05)
- RE: Alert OR syslog? Don (Dec 05)
- RE: Alert OR syslog? Don (Dec 05)
- RE: Alert OR syslog? Steve Halligan (Dec 05)
- RE: Alert OR syslog? Weiss, Jeffrey H. (Dec 05)
- Re: Alert OR syslog? Alberto Gonzalez (Dec 05)
- RE: Alert OR syslog? Weiss, Jeffrey H. (Dec 05)
- RE: Alert OR syslog? L. Christopher Luther (Dec 06)
- Re: RE: Alert OR syslog? Erek Adams (Dec 06)