Snort mailing list archives
Re: Log output format
From: Chris Green <cmg () uab edu>
Date: Thu, 07 Feb 2002 08:40:21 -0600
Michael Wyraz <michael.wyraz () evermind de> writes:
Hi! I'm integrating Snort with an alerting/trouble ticket tool. To do this, I use the snort log output in the log dir - not the "alerts" file but the many small files in the directory with the ip as name because that's much more easy to use than a big logfile. Is there a way to let snort add the aditional information (Xref-infos) to this logs to make the information more complete?
Check out the -G option to snort
-G <mode> Add reference ids back into alert msgs (modes:
basic, url)
I assume when you say Xfef-infos, you mean the reference: tag stuff.
Thank you. Michael. (Please send a copy of your reply to my address since i'm not in the mailing list)
-- Chris Green <cmg () uab edu> "I'm beginning to think that my router may be confused." _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Log output format Michael Wyraz (Feb 07)
- Re: Log output format Chris Green (Feb 07)
- Re: Log output format Michael Wyraz (Feb 07)
- Re: Log output format Chris Green (Feb 07)
- Re: Log output format Michael Wyraz (Feb 07)
- Re: Log output format Chris Green (Feb 07)