|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: [snort] Closing -b log file
From: Martin Roesch (roesch
hiverworld.com)Date: Mon Mar 06 2000 - 21:54:36 CST
- Next message: Martin Roesch: "Re: [snort] Plugin to call external programs!"
- Previous message: CyberPsychotic: "Re: [snort] Anybody got a clue"
- In reply to: Andrew R. Baker: "[snort] Closing -b log file"
- Next in thread: CyberPsychotic: "Re: [snort] Closing -b log file"
- Reply: Martin Roesch: "Re: [snort] Closing -b log file"
- Reply: CyberPsychotic: "Re: [snort] Closing -b log file"
- Reply: Andrew R. Baker: "Re: [snort] Closing -b log file"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Which version are you using? I believe that we're flushing it in 1.5.2+
as well as the 1.6-beta series. Check out the LogBin() function in
log.c for confirmation. You should see an fflush() call in there....
"Andrew R. Baker" wrote:
>
> Is there a way to have snort close the tcpdump style log file (generated
> from the -b option) without just killing and restarting?
>
> -Andrew
-- Martin Roesch <roesch
- Next message: Martin Roesch: "Re: [snort] Plugin to call external programs!"
- Previous message: CyberPsychotic: "Re: [snort] Anybody got a clue"
- In reply to: Andrew R. Baker: "[snort] Closing -b log file"
- Next in thread: CyberPsychotic: "Re: [snort] Closing -b log file"
- Reply: Martin Roesch: "Re: [snort] Closing -b log file"
- Reply: CyberPsychotic: "Re: [snort] Closing -b log file"
- Reply: Andrew R. Baker: "Re: [snort] Closing -b log file"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]