Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: xml file

From: waldo kitty <wkitty42 () windstream net>
Date: Fri, 02 Aug 2013 07:58:26 -0400
On 8/2/2013 06:58, Abid Ayoub wrote:

Hello,


Can i have the sniffed traffic and the alert in xml file, insted  of
  snort.log.xxxx file ?


no... by default, snort.log.xxxxxxxxxx are /binary/ files... those binary files 
are pcap files that must be processed with tools like tcpdump or wireshark... 
unless you've specified that name as the output file for another output module 
in your snort.conf...

not to mention that xml files would be monstrously larger with no benefit gained...

-- 
NOTE: No off-list assistance is given without prior approval.
       Please keep mailing list traffic on the list unless
       private contact is specifically requested and granted.

------------------------------------------------------------------------------
Get your SQL database under version control now!
Version control is standard for application code, but databases havent 
caught up. So what steps can you take to put your SQL databases under 
version control? Why should you start doing it? Read more to find out.
http://pubads.g.doubleclick.net/gampad/clk?id=49501711&iu=/4140/ostg.clktrk
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!
Previous By Date Next
Previous By Thread Next

Current thread: