snort-users November 2009 archive
Main Archive Page > Month Archives  > snort-users archives
snort-users: [Snort-users] Unixsock plugin?

[Snort-users] Unixsock plugin?

From: Honia A <honia2002_at_nospam>
Date: Mon Nov 23 2009 - 17:14:04 GMT
To: <snort-users@lists.sourceforge.net>

Hi all,  

I have a question on how to use Snort unixsock plugin.  

  1. I followed the direction in the manual and added the line output alert_unixsock to snort.conf file.
  2. Then I run the snort command like this: snort -A unsock -c snort.conf and will start to get some output inside the terminal.

I was wondering if you could please let me know if I am doing this the right way or I am missing some steps?  

If I am doing this the correct way, what is it supposed to happen ultimately?  

(I made sure the /var/log/snort directory does contain the snort_alert file if it matters)    

Thanks in advance,
h                                                    



Windows 7: I wanted simpler, now it's simpler. I'm a rock star. http://www.microsoft.com/Windows/windows-7/default.aspx?h=myidea?ocid=PID24727::T:WLMTAGL:ON:WL:en-US:WWL_WIN_myidea:112009



Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july



Snort-users mailing list
Snort-users@lists.sourceforge.net
Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users