On 2020-01-21 18:49, Stuart Henderson wrote:
On 2020-01-21, b2...@zonbie.net <b2...@zonbie.net> wrote:To START suricata in live mode - Do this (as root):#suricata -v -c /etc/suricata/suricata.yaml -i em0 &Well, that's one way. Or you can use the OS mechanisms.To STOP suricata: pgrep suricata and kill -9 the pid returned.Why pgrep then kill when you can just pkill?-9 is a bit of a big hammer and doesn't give things a chance to close cleanly.
Noted. I will use pkill. Thanks. Zann
