Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: swatch

From: Erek Adams <erek () snort org>
Date: Sun, 9 Feb 2003 11:51:17 -0500 (EST)
On Sun, 9 Feb 2003, Mam Ruoc wrote:


Can somebody please help me, or give me a link to a page which will show me
how to setup swatch for snort alert log??

What i need:
Snort is logging alert_full to file /var/log/snort/alert
alerts is mailing to alert () owner com

I've read some guides, but it did'nt help too much-..
I'm using Debian...


You can find a sample config provided by Jason Haar here:

        http://www.theadamsfamily.net/~erek/snort/

Yes, it's not exactly what you want, but it should get you moving in the
right direction.

Cheers!

-----
Erek Adams

   "When things get weird, the weird turn pro."   H.S. Thompson


-------------------------------------------------------
This SF.NET email is sponsored by:
SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See!
http://www.vasoftware.com
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: