|
Home > Archive > Snort > September 2004 > [Snort-users] Running Snort in Console Mode
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
[Snort-users] Running Snort in Console Mode
|
|
| Kamal Ahmed 2004-09-24, 5:46 pm |
| Hi,
I want to run Snort in Console mode, but only showing Alerts, and NOT in
Packet Sniffing mode. I also would like to use sneeze.pl to send false
positives to see if snort works, and displays the alters. Can anyone
give me the command to run snort on command line with this
functionality.
Thanks,
-Kamal.
-------------------------------------------------------
This SF.Net email is sponsored by: YOU BE THE JUDGE. Be one of 170
Project Admins to receive an Apple iPod Mini FREE for your judgement on
who ports your project to Linux PPC the best. Sponsored by IBM.
Deadline: Sept. 24. Go here: http://sf.net/ppc_contest.php
________________________________________
_______
Snort-users mailing list
Snort-users@lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists...nfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf....ist=snort-users
| |
| James Edwards 2004-09-26, 8:48 pm |
|
--=-RDvIQ1AaCmuEe6CzxbiL
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable
On Fri, 2004-09-24 at 16:29, Kamal Ahmed wrote:
> Hi,
>=20
> I want to run Snort in Console mode, but only showing Alerts, and NOT in
> Packet Sniffing mode.
Why can't yopu just tail the log file ? tail -f /the/path/to/alert
--=-RDvIQ1AaCmuEe6CzxbiL
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQBBV1ttoe/ P7NB2GVsRAv5kAKCq0Snt+6lLUN1n+BR2mL4xW69
YCQCfWWTE
sxSnRsqfCTr9KczVvMK9ArA=
=k/GJ
-----END PGP SIGNATURE-----
--=-RDvIQ1AaCmuEe6CzxbiL--
-------------------------------------------------------
This SF.Net email is sponsored by: YOU BE THE JUDGE. Be one of 170
Project Admins to receive an Apple iPod Mini FREE for your judgement on
who ports your project to Linux PPC the best. Sponsored by IBM.
Deadline: Sept. 24. Go here: http://sf.net/ppc_contest.php
________________________________________
_______
Snort-users mailing list
Snort-users@lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists...nfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf....ist=snort-users
|
|
|
|
|