1

specifying snort output files?

view story
linux-howto

http://serverfault.com – I'm confused about snort outputs. Where are the output file(s) supposed to be specified? OR, more specifically, I've got two files being written (alert and snort.log.xxx), but only have one output file specified (snort.log.xx) and am expecting only one output file (snort.log.xx). Where's the alert file coming from? As an aside, barnyard2 is not running at this time. thanks in advance! Details: files being written are: $ ls -la /var/snort/eth4 drwxrwxr-x+ 3 snort snort 4096 Oct 11 10:08 . drwxr-xr-x. 3 snort snort 4096 Oct 11 10:03 .. -rw-rw-r--+ 1 snort snort 12535192 Oct (HowTos)