Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
From: Daniel Polombo (polombo_at_cartel-securite.fr)
Date: Thu Nov 07 2002 - 03:03:34 CST
Le mer 06/11/2002 à 07:01, Kavitha Srinivasan a écrit :
> Does anyone who has used prelude IDS know in which file the IDMEF messages
> are logged for the alerts detected in the absence of frontend and database.
In the prelude-manager.conf file, you should have a 'logfile =' entry.
For instance, mine reads :
logfile = /var/log/prelude.log;
However, the alerts are not logged as IDMEF messages, just plain text,
(almost) human-readable format.