You can run snort with following options:
#/usr/local/bin/snort -b -D -A fast -b - compressed logs -D - daemon -A fast - one line per alert in file "alert" On Tuesday 27 November 2001 10:00, you wrote: > Hi guys, > > I'm a pretty new user to Linux, and I want to set up some sort of > protection for my box. I have snort installed and I'm looking for rulesets > - the problem I have is this: > > When I run snort, it runs in a terminal. How exactly do I set snort to just > run in the background, collecting unusual packets? I'm sure there must be a > way. > > Also, is Hogwash a suitable tool to use instead of/as well as snort? I need > something that is relatively simple but also effective. > > Regards, > > Thomas Madhavan -- Cosmin Vranceanu System Administrator Internet&Data Astral Telecom, Romania
